Описание
NVIDIA NeMo library for all platforms contains a vulnerability in the model loading component, where an attacker could cause code injection by loading .nemo files with maliciously crafted metadata. A successful exploit of this vulnerability may lead to remote code execution and data tampering.
EPSS
Процентиль: 14%
0.00048
Низкий
7.8 High
CVSS3
Дефекты
CWE-22
Связанные уязвимости
CVSS3: 7.8
github
22 дня назад
NVIDIA NeMo library for all platforms contains a vulnerability in the model loading component, where an attacker could cause code injection by loading .nemo files with maliciously crafted metadata. A successful exploit of this vulnerability may lead to remote code execution and data tampering.
EPSS
Процентиль: 14%
0.00048
Низкий
7.8 High
CVSS3
Дефекты
CWE-22