exploitDog

CVE-2024-0082

Опубликовано: 08 апр. 2024

Источник: nvd

CVSS3: 8.2

EPSS Низкий

Описание

NVIDIA ChatRTX for Windows contains a vulnerability in the UI, where an attacker can cause improper privilege management by sending open file requests to the application. A successful exploit of this vulnerability might lead to local escalation of privileges, information disclosure, and data tampering

Ссылки

https://nvidia.custhelp.com/app/answers/detail/a_id/5532
Vendor Advisory
https://nvidia.custhelp.com/app/answers/detail/a_id/5532
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:nvidia:chatrtx:*:*:*:*:*:*:*:*

Версия до 0.2.1 (исключая)

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 18%

0.00057

Низкий

8.2 High

CVSS3

Дефекты

CWE-269

Связанные уязвимости

GHSA-4677-2pjx-h9q8

CVSS3: 8.2

github

почти 2 года назад

NVIDIA ChatRTX for Windows contains a vulnerability in the UI, where an attacker can cause improper privilege management by sending open file requests to the application. A successful exploit of this vulnerability might lead to local escalation of privileges, information disclosure, and data tampering

EPSS

Процентиль: 18%

0.00057

Низкий

8.2 High

CVSS3

Дефекты

CWE-269