Path Traversal Vulnerability in NVIDIA BioNeMo Core for Linux
CVE-2026-24217

8.8HIGH

Key Information:

Vendor: Nvidia
Status: Bionemo Framework
Vendor: CVE Published:; 20 May 2026

What is CVE-2026-24217?

The NVIDIA BioNeMo Core for Linux is susceptible to a path traversal vulnerability, allowing an attacker to manipulate file paths and potentially load malicious files. If successfully exploited, this vulnerability could enable code execution, lead to denial of service, result in information disclosure, and facilitate data tampering. Organizations using this software should promptly assess their systems and apply necessary patches or mitigations to protect against this threat.

Affected Version(s)

BioNeMo Framework Linux 0

References

https://nvd.nist.gov/vuln/detail/CVE-2026-24217

https://www.cve.org/CVERecord?id=CVE-2026-24217

https://nvidia.custhelp.com/app/answers/detail/a_id/5831

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 20, 2026
Vulnerability Reserved
Jan 21, 2026

CVE-2026-24217 Data

JSON

Nvidia

What is CVE-2026-24217?

Affected Version(s)

References

CVSS V3.1

Timeline