Out-of-bounds Read Vulnerability in NVIDIA CUDA Toolkit's cuobjdump
CVE-2024-53875

3.3LOW

Key Information:

Vendor: Nvidia
Status: Cuda Toolkit
Vendor: CVE Published:; 25 February 2025

What is CVE-2024-53875?

The NVIDIA CUDA Toolkit for all platforms contains an out-of-bounds read vulnerability in the cuobjdump binary. This vulnerability arises when a user provides a malformed ELF file to cuobjdump, which could result in unintended memory access. Exploiting this flaw may lead to partial denial of service, impacting CUDA applications and their ability to perform efficiently. Users are advised to implement the available patches to mitigate any potential risks associated with this vulnerability.

Affected Version(s)

CUDA Toolkit Windows All versions up to CUDA Toolkit 12.8

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5594

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 25, 2025
Vulnerability Reserved
Nov 22, 2024

Nvidia

What is CVE-2024-53875?

Affected Version(s)

References

CVSS V3.1

Timeline