Количество 8
Количество 8
BDU:2025-02018
Уязвимость программного обеспечения для создания и запуска контейнеров NVIDIA Container Toolkit и программного средства для управления ресурсами NVIDIA GPU Operator, связанная с ошибками синхронизации при использовании общего ресурса («Ситуация гонки»), позволяющая нарушителю выполнить код
ROS-20251028-11
Множественные уязвимости nvidia-container-toolkit
ROS-20251028-10
Множественные уязвимости nvidia-container
CVE-2025-23359
NVIDIA Container Toolkit for Linux contains a Time-of-Check Time-of-Use (TOCTOU) vulnerability when used with default configuration, where a crafted container image could gain access to the host file system. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
CVE-2025-23359
NVIDIA Container Toolkit for Linux contains a Time-of-Check Time-of-Use (TOCTOU) vulnerability when used with default configuration, where a crafted container image could gain access to the host file system. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
CVE-2025-23359
GHSA-4hmh-pm5p-9j7j
NVIDIA Container Toolkit for Linux contains a Time-of-Check Time-of-Use (TOCTOU) vulnerability when used with default configuration, where a crafted container image could gain access to the host file system. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
SUSE-SU-2025:4187-1
Security update for nvidia-container-toolkit
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2025-02018 Уязвимость программного обеспечения для создания и запуска контейнеров NVIDIA Container Toolkit и программного средства для управления ресурсами NVIDIA GPU Operator, связанная с ошибками синхронизации при использовании общего ресурса («Ситуация гонки»), позволяющая нарушителю выполнить код | CVSS3: 8.3 | 1% Низкий | 11 месяцев назад |
 | ROS-20251028-11 Множественные уязвимости nvidia-container-toolkit | CVSS3: 8.5 | 3 месяца назад | |
| ROS-20251028-10 Множественные уязвимости nvidia-container | CVSS3: 8.5 | 3 месяца назад | |
 | CVE-2025-23359 NVIDIA Container Toolkit for Linux contains a Time-of-Check Time-of-Use (TOCTOU) vulnerability when used with default configuration, where a crafted container image could gain access to the host file system. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering. | CVSS3: 8.3 | 1% Низкий | 11 месяцев назад |
 | CVE-2025-23359 NVIDIA Container Toolkit for Linux contains a Time-of-Check Time-of-Use (TOCTOU) vulnerability when used with default configuration, where a crafted container image could gain access to the host file system. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering. | CVSS3: 8.3 | 1% Низкий | 11 месяцев назад |
 | CVSS3: 8.3 | 1% Низкий | 11 месяцев назад | |
| GHSA-4hmh-pm5p-9j7j NVIDIA Container Toolkit for Linux contains a Time-of-Check Time-of-Use (TOCTOU) vulnerability when used with default configuration, where a crafted container image could gain access to the host file system. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering. | CVSS3: 8.3 | 1% Низкий | 11 месяцев назад |
 | SUSE-SU-2025:4187-1 Security update for nvidia-container-toolkit | около 2 месяцев назад |
Уязвимостей на страницу