Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2024-0110

NVIDIA CUDA Toolkit contains a vulnerability in command `cuobjdump` where a user may cause an out-of-bound write by passing in a malformed ELF file. A successful exploit of this vulnerability may lead to code execution or denial of service.

Published

2024-08-31T09:15:05.990

Last Modified

2024-09-18T15:16:37.990

Status

Analyzed

Source

[email protected]

Severity

CVSSv3.1: 4.4 (MEDIUM)

Weaknesses
  • Type: Secondary
    CWE-787
  • Type: Primary
    CWE-787
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application nvidia cuda_toolkit ≤ 12.6.0 Yes
References