NVIDIA Triton Inference Server for Linux contains a vulnerability in the tracing API, where a user can corrupt system files. A successful exploit of this vulnerability might lead to denial of service and data tampering.
Source: NVIDIA Corporation
Max CVSS
6.5
EPSS Score
0.04%
Published
2024-05-09
Updated
2024-05-14
NVIDIA ChatRTX for Windows contains a vulnerability in the ChatRTX UI and backend, where a user can cause a clear-text transmission of sensitive information issue by data sniffing. A successful exploit of this vulnerability might lead to information disclosure.
Source: NVIDIA Corporation
Max CVSS
5.5
EPSS Score
N/A
Published
2024-05-09
Updated
2024-05-14
NVIDIA ChatRTX for Windows contains a vulnerability in ChatRTX UI, where a user can cause an improper privilege management issue by exploiting interprocess communication between different processes. A successful exploit of this vulnerability might lead to information disclosure, escalation of privileges, and data tampering.
Source: NVIDIA Corporation
Max CVSS
7.5
EPSS Score
N/A
Published
2024-05-09
Updated
2024-05-14
NVIDIA ChatRTX for Windows contains a vulnerability in Chat RTX UI, where a user can cause an improper privilege management issue by sending user inputs to change execution flow. A successful exploit of this vulnerability might lead to information disclosure, escalation of privileges, and data tampering.
Source: NVIDIA Corporation
Max CVSS
7.5
EPSS Score
N/A
Published
2024-05-09
Updated
2024-05-14
NVIDIA Triton Inference Server for Linux contains a vulnerability in shared memory APIs, where a user can cause an improper memory access issue by a network API. A successful exploit of this vulnerability might lead to denial of service and data tampering.
Source: NVIDIA Corporation
Max CVSS
5.5
EPSS Score
0.04%
Published
2024-05-09
Updated
2024-05-14
NVIDIA Triton Inference Server for Linux contains a vulnerability where a user can set the logging location to an arbitrary file. If this file exists, logs are appended to the file. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Source: NVIDIA Corporation
Max CVSS
9.0
EPSS Score
0.04%
Published
2024-05-09
Updated
2024-05-14
NVIDIA ChatRTX for Windows contains a vulnerability in the UI, where an attacker can cause a cross-site scripting error by network by running malicious scripts in users' browsers. A successful exploit of this vulnerability might lead to code execution, denial of service, and information disclosure.
Source: NVIDIA Corporation
Max CVSS
6.5
EPSS Score
0.04%
Published
2024-04-08
Updated
2024-04-09
NVIDIA ChatRTX for Windows contains a vulnerability in the UI, where an attacker can cause improper privilege management by sending open file requests to the application. A successful exploit of this vulnerability might lead to local escalation of privileges, information disclosure, and data tampering
Source: NVIDIA Corporation
Max CVSS
8.2
EPSS Score
0.04%
Published
2024-04-08
Updated
2024-04-09
NVIDIA NeMo framework for Ubuntu contains a vulnerability in tools/asr_webapp where an attacker may cause an allocation of resources without limits or throttling. A successful exploit of this vulnerability may lead to a server-side denial of service.
Source: NVIDIA Corporation
Max CVSS
8.6
EPSS Score
0.04%
Published
2024-04-05
Updated
2024-04-08
NVIDIA nvTIFF Library for Windows and Linux contains a vulnerability where improper input validation might enable an attacker to use a specially crafted input file. A successful exploit of this vulnerability might lead to a partial denial of service.
Source: NVIDIA Corporation
Max CVSS
2.8
EPSS Score
0.04%
Published
2024-04-05
Updated
2024-04-08
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a user in a guest VM can cause a NULL-pointer dereference in the host. A successful exploit of this vulnerability may lead to denial of service.
Source: NVIDIA Corporation
Max CVSS
6.5
EPSS Score
0.04%
Published
2024-03-27
Updated
2024-03-28
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a user in a guest can cause a NULL-pointer dereference in the host, which may lead to denial of service.
Source: NVIDIA Corporation
Max CVSS
6.5
EPSS Score
0.04%
Published
2024-03-27
Updated
2024-03-28
NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, where it allows a guest OS to allocate resources for which the guest OS is not authorized. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Source: NVIDIA Corporation
Max CVSS
7.8
EPSS Score
0.04%
Published
2024-03-27
Updated
2024-03-28
NVIDIA CUDA toolkit for all platforms contains a vulnerability in cuobjdump and nvdisasm where an attacker may cause a crash by tricking a user into reading a malformed ELF file. A successful exploit of this vulnerability may lead to a partial denial of service.
Source: NVIDIA Corporation
Max CVSS
3.3
EPSS Score
0.04%
Published
2024-04-05
Updated
2024-04-08
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where a user may cause a NULL-pointer dereference by accessing passed parameters the validity of which has not been checked. A successful exploit of this vulnerability may lead to denial of service and limited information disclosure.
Source: NVIDIA Corporation
Max CVSS
6.1
EPSS Score
0.04%
Published
2024-03-27
Updated
2024-03-28
NVIDIA GPU Display Driver for Linux contains a vulnerability where an attacker may access a memory location after the end of the buffer. A successful exploit of this vulnerability may lead to denial of service and data tampering.
Source: NVIDIA Corporation
Max CVSS
7.1
EPSS Score
0.06%
Published
2024-03-27
Updated
2024-03-28
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer when the driver is performing an operation at a privilege level that is higher than the minimum level required. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Source: NVIDIA Corporation
Max CVSS
7.8
EPSS Score
0.04%
Published
2024-03-27
Updated
2024-03-28
NVIDIA CUDA toolkit for all platforms contains a vulnerability in cuobjdump and nvdisasm where an attacker may cause a crash by tricking a user into reading a malformed ELF file. A successful exploit of this vulnerability may lead to a partial denial of service.
Source: NVIDIA Corporation
Max CVSS
3.3
EPSS Score
0.04%
Published
2024-04-05
Updated
2024-04-08
NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged regular user can cause an out-of-bounds write. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Source: NVIDIA Corporation
Max CVSS
7.8
EPSS Score
0.04%
Published
2024-03-27
Updated
2024-03-28
NVIDIA Bluefield 2 and Bluefield 3 DPU BMC contains a vulnerability in ipmitool, where a root user may cause code injection by a network call. A successful exploit of this vulnerability may lead to code execution on the OS.
Source: NVIDIA Corporation
Max CVSS
7.2
EPSS Score
0.06%
Published
2024-01-24
Updated
2024-01-31
NVIDIA Triton Inference Server for Linux and Windows contains a vulnerability where, when it is launched with the non-default command line option --model-control explicit, an attacker may use the model load API to cause a relative path traversal. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Source: NVIDIA Corporation
Max CVSS
8.8
EPSS Score
0.06%
Published
2024-01-12
Updated
2024-01-18
NVIDIA DGX A100 SBIOS contains a vulnerability where an attacker may cause an SMI callout vulnerability that could be used to execute arbitrary code at the SMM level. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, and information disclosure.
Source: NVIDIA Corporation
Max CVSS
7.8
EPSS Score
0.04%
Published
2024-01-12
Updated
2024-01-19
NVIDIA DGX A100 SBIOS contains a vulnerability where a local attacker can cause input validation checks to be bypassed by causing an integer overflow. A successful exploit of this vulnerability may lead to denial of service, information disclosure, and data tampering.
Source: NVIDIA Corporation
Max CVSS
7.8
EPSS Score
0.04%
Published
2024-01-12
Updated
2024-01-19
NVIDIA DGX A100 BMC contains a vulnerability where a user may cause a missing authentication issue for a critical function by an adjacent network . A successful exploit of this vulnerability may lead to escalation of privileges, code execution, denial of service, information disclosure, and data tampering.
Source: NVIDIA Corporation
Max CVSS
8.0
EPSS Score
0.09%
Published
2024-01-12
Updated
2024-01-19
NVIDIA DGX A100 SBIOS contains a vulnerability where a user may cause a dynamic variable evaluation by local access. A successful exploit of this vulnerability may lead to denial of service.
Source: NVIDIA Corporation
Max CVSS
7.5
EPSS Score
0.04%
Published
2024-01-12
Updated
2024-01-19
579 vulnerabilities found
1 2 3 4 5 6 ...... 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!