CVE-2024-0124

CVSS 3.1 Score 3.3 of 10 (low)

Details

Published Oct 3, 2024
Updated: Oct 4, 2024
CWE ID 416

Summary

CVE-2024-0124 is a vulnerability found in the NVIDIA CUDA Toolkit for both Windows and Linux, specifically affecting the nvdisasm command line tool. This vulnerability allows an attacker to exploit a malformed ELF file, leading nvdisasm to read freed memory, which may result in a limited denial of service. The exploit requires local user interaction but does not necessitate special privileges. To remediate this issue, users are advised to update their NVIDIA CUDA Toolkit to the latest version as per guidance from NVIDIA's support resources. While the base severity of this vulnerability is rated as low, organizations should be aware of its potential impact on system availability.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share