CVE-2024-0130

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Dec 6, 2024
CWE ID 287

Summary

CVE-2024-0130 is a recently disclosed vulnerability affecting NVIDIA UFM Enterprise, UFM Appliance, and UFM CyberAI. An attacker can exploit this issue by sending a malformed request through the Ethernet management interface, resulting in an improper authentication process. The implications of this vulnerability are significant, as successful exploitation could lead to escalation of privileges, data tampering, denial of service, and information disclosure. It is crucial that affected organizations apply the necessary patches or mitigations to prevent potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share