NULL Pointer Exception in NVIDIA CUDA Toolkit's nvdisasm Binary
CVE-2024-53877

3.3LOW

Key Information:

Vendor: Nvidia
Status: Cuda Toolkit
Vendor: CVE Published:; 25 February 2025

Summary

A vulnerability exists in the NVIDIA CUDA toolkit's nvdisasm binary, where improper handling of malformed ELF files can lead to a NULL pointer exception. This flaw may allow an attacker to execute a specially crafted file that triggers a partial denial of service, impacting system availability. Organizations using the affected software should review their configurations and apply necessary measures to mitigate this issue.

Affected Version(s)

CUDA Toolkit Windows All versions up to CUDA Toolkit 12.8

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5594

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Feb 25, 2025
Vulnerability Reserved
Nov 22, 2024