Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvidiaNvidiaNVIDIA:5560
HistoryAug 07, 2024 - 12:00 a.m.

NVIDIA CV-CUDA - August 2024

2024-08-0700:00:00
nvidia.custhelp.com
2
nvidia cv-cuda
security update
python api
resource consumption
vulnerability
ubuntu
jetpack
cve-2024-0115

CVSS3

6.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

AI Score

7

Confidence

High

EPSS

0

Percentile

9.5%

JSON

NVIDIA has released a software update for NVIDIA® CV-CUDA®. To protect your system, download and install this software update from the Releases tab on the CV-CUDA Github page.

Go to NVIDIA Product Security.

Details

This section provides a summary of potential vulnerabilities that this security update addresses and their impact. Descriptions use CWE™, and base scores and vectors use CVSS v3.1 standards.

CVE ID Description Vector Base Score Severity CWE Impacts
CVE-2024-0115 NVIDIA CV-CUDA for Ubuntu 20.04, Ubuntu 22.04, and Jetpack contains a vulnerability in Python APIs where a user may cause an uncontrolled resource consumption issue by a long running CV-CUDA Python process. A successful exploit of this vulnerability may lead to denial of service and data loss. AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H 6.1 Medium CWE‑400 Denial of service, data loss

The NVIDIA risk assessment is based on an average of risk across a diverse set of installed systems and may not represent the true risk to your local installation. NVIDIA recommends evaluating the risk to your specific configuration.

Security Updates

The following table lists the NVIDIA products affected, versions affected, and the updated version that includes this security update. Download the update from the Releases tab on the CV-CUDA Github page to apply the security update.

CVE IDs Addressed Affected Products Platform or OS Affected Versions Updated Version

CVE‑2024-0115

| NVIDIA CV-CUDA | Ubuntu 20.04, Ubuntu 22.04, Jetpack | v0.1.x - v0.9.x | v0.10.0

Notes

  • Earlier software releases of this product are also affected. If you are using an earlier release, upgrade to the latest release version.

Related

nvd 1
cvelist 1
cve 1
vulnrichment 1
nvd
nvd
CVE-2024-0115
2024-08-12 13:38:12
cvelist
cvelist
CVE-2024-0115
2024-08-09 02:23:48
cve
cve
CVE-2024-0115
2024-08-12 13:38:12
vulnrichment
vulnrichment
CVE-2024-0115
2024-08-09 02:23:48

CVSS3

6.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

AI Score

7

Confidence

High

EPSS

0

Percentile

9.5%

JSON
Related for NVIDIA:5560
nvd1cvelist1cve1vulnrichment1