The vulnerability of the nvJPEG2000 library in NVIDIA GPU graphics software allows a perpetrator to execute arbitrary code and rewrite data in the memory buffer.

🗓️ 13 May 2025 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 6 Views

The nvJPEG2000 vulnerability in NVIDIA GPU software allows remote code execution via out-of-bounds buffer writes.

Reporter	Title	Published	Views	Family All 12
Circl	CVE-2024-0143	11 Feb 202518:00	–	circl
CNNVD	NVIDIA nvJPEG2000 安全漏洞	12 Feb 202500:00	–	cnnvd
CVE	CVE-2024-0143	12 Feb 202500:10	–	cve
Cvelist	CVE-2024-0143	12 Feb 202500:10	–	cvelist
EUVD	EUVD-2024-15942	3 Oct 202520:07	–	euvd
NVD	CVE-2024-0143	12 Feb 202501:15	–	nvd
Nvidia	Security Bulletin: NVIDIA nvJPEG2000 - February 2025	11 Feb 202500:00	–	nvidia
Positive Technologies	PT-2025-6419 · Nvidia · Nvjpeg2000 Library	24 Oct 202400:00	–	ptsecurity
RedhatCVE	CVE-2024-0143	14 Feb 202500:21	–	redhatcve
Talos	NVIDIA nvJPEG2000 Coding Style Component index out-of-bounds write vulnerability	11 Feb 202500:00	–	talos

Vulners

Node

nvidia nvjpeg2000Match0.8.0

Source	Link
nvidia	www.nvidia.custhelp.com/app/answers/detail/a_id/5596
talosintelligence	www.talosintelligence.com/vulnerability_reports/TALOS-2024-2095
web	www.web.nvd.nist.gov/view/vuln/detail
talosintelligence	www.talosintelligence.com/reports/TALOS-2024-2095

13 May 2025 00:00Current

8.4High risk

Vulners AI Score8.4

CVSS 36.8

CVSS 27.1

EPSS0.00643

out of bounds memory overwrite remote execution nvidia graphics software