Deserialization Vulnerability in NVIDIA Megatron Bridge for Linux
CVE-2026-24240

7.8HIGH

Key Information:

Vendor

Nvidia

Vendor
CVE Published:
1 July 2026

What is CVE-2026-24240?

NVIDIA Megatron Bridge for Linux is susceptible to a deserialization vulnerability that allows attackers to manipulate untrusted data. Successful exploitation could result in unauthorized code execution, privilege escalation, and data manipulation, potentially compromising sensitive information. This vulnerability highlights the importance of securing data handling processes and implementing rigorous validation checks within applications.

Affected Version(s)

Megatron-Bridge All platforms Versions 0.0 to 0.4.0

References

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.