CVE-2024-0124

NVIDIA CUDA Toolkit for Windows and Linux contains a vulnerability in the nvdisam command line tool, where a user can cause nvdisasm to read freed memory by running it on a malformed ELF file. A successful exploit of this vulnerability might lead to a limited denial of service.

CVSS v3 3.3 LOW

3.3^/10

CVSS v3 : LOW

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 1.4

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact LOW

Scope UNCHANGED

References

Link	Resource
https://nvidia.custhelp.com/app/answers/detail/a_id/5577

Configurations

No configuration.

History

04 Oct 2024, 13:50

Type	Values Removed	Values Added
Summary		(es) NVIDIA CUDA Toolkit para Windows y Linux contiene una vulnerabilidad en la herramienta de línea de comandos nvdisam, donde un usuario puede hacer que nvdisasm lea la memoria liberada al ejecutarla en un archivo ELF mal formado. Una explotación exitosa de esta vulnerabilidad podría provocar una denegación de servicio limitada.

03 Oct 2024, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-10-03 17:15

Updated : 2024-10-04 13:50

NVD link : CVE-2024-0124

Mitre link : CVE-2024-0124

CVE.ORG link : CVE-2024-0124

JSON object : View

Products Affected

No product.

CWE

CWE-416

Use After Free

3.3 /10