NVIDIA CUDA Toolkit Vulnerability Could Lead to Denial of Service
CVE-2024-0102
5.5MEDIUM
Summary
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvdisasm, where an attacker can cause an out-of-bounds read issue by deceiving a user into reading a malformed ELF file. A successful exploit of this vulnerability might lead to denial of service.
Affected Version(s)
NVIDIA CUDA Toolkit = All versions up to and including CUDA Toolkit 12.5U1
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published.
Vulnerability Reserved.
Collectors
NVD DatabaseMitre Database
Credit
Matteo Marini and Daniele Cono D'Elia