Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2024-0123

Опубликовано: 03 окт. 2024
Источник: redhat
CVSS3: 3.3
EPSS Низкий

Описание

NVIDIA CUDA toolkit for Windows and Linux contains a vulnerability in the nvdisasm command line tool where an attacker may cause an improper validation in input issue by tricking the user into running nvdisasm on a malicious ELF file. A successful exploit of this vulnerability may lead to denial of service.

A flaw was found in the NVIDIA CUDA toolkit. This issue may allow an attacker to cause an improper validation in input issue via the nvdisasm command line tool by tricking the user into running nvdisasm on a malicious ELF file, leading to a denial of service.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
OpenShift Lightspeedopenshift-lightspeed-beta/lightspeed-service-api-rhel9Fix deferred
Red Hat Enterprise Linux AI (RHEL AI)rhelai1/bootc-nvidia-rhel9Fix deferred
Red Hat Enterprise Linux AI (RHEL AI)rhelai1/instructlab-nvidia-rhel9Fix deferred

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low
Дефект:
CWE-1285
https://bugzilla.redhat.com/show_bug.cgi?id=2316323NVIDIA CUDA Toolkit: improper input validation may lead to DoS

EPSS

Процентиль: 9%
0.00033
Низкий

3.3 Low

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2024-0123

CVSS3: 3.3
ubuntu
около 1 года назад

NVIDIA CUDA toolkit for Windows and Linux contains a vulnerability in the nvdisasm command line tool where an attacker may cause an improper validation in input issue by tricking the user into running nvdisasm on a malicious ELF file. A successful exploit of this vulnerability may lead to denial of service.

nvd логотип

CVE-2024-0123

CVSS3: 3.3
nvd
около 1 года назад

NVIDIA CUDA toolkit for Windows and Linux contains a vulnerability in the nvdisasm command line tool where an attacker may cause an improper validation in input issue by tricking the user into running nvdisasm on a malicious ELF file. A successful exploit of this vulnerability may lead to denial of service.

debian логотип

CVE-2024-0123

CVSS3: 3.3
debian
около 1 года назад

NVIDIA CUDA toolkit for Windows and Linux contains a vulnerability in ...

github логотип

GHSA-ff23-px5j-g8qq

CVSS3: 3.3
github
около 1 года назад

NVIDIA CUDA toolkit for Windows and Linux contains a vulnerability in the nvdisasm command line tool where an attacker may cause an improper validation in input issue by tricking the user into running nvdisasm on a malicious ELF file. A successful exploit of this vulnerability may lead to denial of service.

fstec логотип

BDU:2025-13652

CVSS3: 3.3
fstec
около 1 года назад

Уязвимость утилиты nvdisasm программного средства для параллельных вычислений на графических процессорах NVIDIA CUDA Toolkit, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 9%
0.00033
Низкий

3.3 Low

CVSS3