Server-Side Request Forgery Vulnerability in NVIDIA Megatron Bridge for Linux
CVE-2026-24242

7.8HIGH

Key Information:

Vendor

Nvidia

Vendor
CVE Published:
1 July 2026

What is CVE-2026-24242?

The NVIDIA Megatron Bridge for Linux has a vulnerability that allows an attacker to initiate a server-side request forgery (SSRF) attack. Exploitation of this flaw may enable the attacker to perform unauthorized actions or access sensitive data, resulting in potential information disclosure. It is important for users to review their configurations and apply necessary updates to mitigate this security risk.

Affected Version(s)

Megatron-Bridge All platforms Versions 0.0 to 0.4.0

References

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.