Out-of-bounds Read Vulnerability in NVIDIA CUDA Toolkit's cuobjdump
CVE-2024-53875
3.3LOW
Summary
The NVIDIA CUDA Toolkit for all platforms contains an out-of-bounds read vulnerability in the cuobjdump binary. This vulnerability arises when a user provides a malformed ELF file to cuobjdump, which could result in unintended memory access. Exploiting this flaw may lead to partial denial of service, impacting CUDA applications and their ability to perform efficiently. Users are advised to implement the available patches to mitigate any potential risks associated with this vulnerability.
Affected Version(s)
CUDA Toolkit Windows All versions up to CUDA Toolkit 12.8
References
CVSS V3.1
Score:
3.3
Severity:
LOW
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved