CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-8036

Improper input validation in NI-PAL may allow a local authenticated user to access arbitrary system memory, potentially leading to privilege escalation. This vulnerability affects NI-PAL 26.3.0 and prior versions on Windows and Linux.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 5.1%

CVSS Severity

CVSS v3 Score 7.1

References

https://www.ni.com/en/support/security/available-critical-and-security-updates-for-ni-software/2026/invalid-input-validation-vulnerabilities-in-ni-pal.html

Products affected by CVE-2026-8036

Ni » Ni-Pal » Version: N/A

cpe:2.3:a:ni:ni-pal:-
Ni » Ni-Pal » Version: 20.0.0

cpe:2.3:a:ni:ni-pal:20.0.0
Ni » Ni-Pal » Version: 20.0.1

cpe:2.3:a:ni:ni-pal:20.0.1
Ni » Ni-Pal » Version: 21.0

cpe:2.3:a:ni:ni-pal:21.0
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-
Ni » Linux Real-Time » Version: N/A

cpe:2.3:o:ni:linux_real-time:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-8036

Products

Pricing

Contact Us