Deserialization Vulnerability in NVIDIA Megatron Bridge for Linux
CVE-2026-24249

7.8HIGH

Key Information:

Vendor

Nvidia

Vendor
CVE Published:
1 July 2026

What is CVE-2026-24249?

The NVIDIA Megatron Bridge for Linux presents a security flaw that allows attackers to exploit the deserialization of untrusted data. This vulnerability opens the door for various malicious activities, including the execution of arbitrary code, elevation of user privileges, manipulation of data, and unauthorized access to sensitive information. Mitigating this vulnerability is essential for safeguarding system integrity and preventing potential data breaches.

Affected Version(s)

Megatron-Bridge All platforms Versions 0.0 to 0.4.0

References

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.