A vulnerability, which was classified as problematic , has been found in NI grpc-device and InstrumentStudio . Affected by this issue is some unknown functionality of the component Streaming API . This manipulation causes out-of-bounds read. This vulnerability appears as CVE-2026-48138 . The attack may be initiated remotely. There is no available exploit.