High severity7.8NVD Advisory· Published Dec 18, 2024· Updated Apr 15, 2026

CVE-2024-12741

Description

A deserialization of untrusted data vulnerability exists in NI DAQExpress that may result in remote code execution. Successful exploitation requires an attacker to get a user to open a specially crafted project file. This vulnerability affects DAQExpress 5.1 and prior versions. Please note that DAQExpress is an EOL product and will not receive any updates.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

knowledge.ni.com/KnowledgeArticleDetailsnvd

News mentions

No linked articles in our index yet.

cvss	0.507
epss	0.007
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000