Improper Input Validation in NVIDIA Flare SDK
CVE-2026-24204

6.5MEDIUM

Key Information:

Vendor: Nvidia
Status: Flare Sdk
Vendor: CVE Published:; 28 April 2026

What is CVE-2026-24204?

The NVIDIA Flare SDK is affected by a vulnerability stemming from improper input validation that allows attackers to exploit path traversal techniques. This exploit can result in unauthorized information disclosure, potentially compromising sensitive data. It is essential for users to be aware of this vulnerability and to apply appropriate security measures to mitigate risks associated with their use of the Flare SDK.

Affected Version(s)

FLARE SDK Linux/MacOS All versions prior to 2.7.2

References

https://nvd.nist.gov/vuln/detail/CVE-2026-24204

https://www.cve.org/CVERecord?id=CVE-2026-24204

https://nvidia.custhelp.com/app/answers/detail/a_id/5819

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 28, 2026
Vulnerability Reserved
Jan 21, 2026

CVE-2026-24204 Data

JSON

Nvidia

What is CVE-2026-24204?

Affected Version(s)

References

CVSS V3.1

Timeline