NI SystemLink Enterprise Authentication Bypass Vulnerability Allowing Privilege Escalation or Information Disclosure

Vulnerability

Patched

An authentication bypass vulnerability has been identified in the NI SystemLink Enterprise Dashboard application, affecting versions through 2026-04. This vulnerability may allow an unauthenticated remote attacker to bypass authentication controls, leading to privilege escalation limited to Dashboard resources or unauthorized information disclosure. Exploitation requires sending a specially crafted HTTP request.

Impact

Exploitation of this vulnerability could result in unauthorized access to Dashboard resources, allowing for privilege escalation or information disclosure.

Remediation

Users are advised to upgrade to NI SystemLink Enterprise version 2026-05. For more information, refer to the SystemLink Enterprise release notes and the guide on updating SystemLink Enterprise.

Added: May 29, 2026, 7:19 PM

Updated: May 29, 2026, 7:19 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

0.0

relevance

9.7

NI SystemLink Enterprise Authentication Bypass Vulnerability Allowing Privilege Escalation or Information Disclosure

Vulnerability

Impact

Remediation

Affected Products

NI SystemLink Enterprise

CVSS Scores

References

Vulnerability Rating