555 matches found
CVE-2024-0081
NVIDIA NeMo framework for Ubuntu contains a vulnerability in tools/asrwebapp where an attacker may cause an allocation of resources without limits or throttling. A successful exploit of this vulnerability may lead to a server-side denial of service...
The vulnerability of the SaveRestoreConnector function in NVIDIA NeMo’s comprehensive platform for training and applying neural networks in speech processing and natural language processing allows a hacker to execute arbitrary code.
The vulnerability of the SaveRestoreConnector function in NVIDIA NeMo’s comprehensive platform for training and applying neural networks in speech processing and natural language processing is related to an incorrect restriction on the path name to the restricted-access catalog. Exploiting this...
CVE-2024-0129
NVIDIA NeMo contains a vulnerability in SaveRestoreConnector where a user may cause a path traversal issue via an unsafe .tar file extraction. A successful exploit of this vulnerability may lead to code execution and data tampering...
CVE-2024-0129
NVIDIA NeMo contains a vulnerability in SaveRestoreConnector where a user may cause a path traversal issue via an unsafe .tar file extraction. A successful exploit of this vulnerability may lead to code execution and data tampering...
CVE-2024-0129
NVIDIA NeMo contains a vulnerability in SaveRestoreConnector where a user may cause a path traversal issue via an unsafe .tar file extraction. A successful exploit of this vulnerability may lead to code execution and data tampering...
CVE-2024-0129
CVE-2024-0129 affects NVIDIA NeMo, specifically the SaveRestoreConnector where unsafe extraction of .tar files can trigger a path traversal vulnerability. The issue may lead to code execution and data tampering. NVIDIA’s advisory patches NeMo up to version r2.0.0rc0; upgrading to this version (or...
CVE-2024-0129
NVIDIA NeMo contains a vulnerability in SaveRestoreConnector where a user may cause a path traversal issue via an unsafe .tar file extraction. A successful exploit of this vulnerability may lead to code execution and data tampering...
Security Bulletin: NVIDIA NeMo - October 2024
NVIDIA has released a software update for NVIDIA® NeMo. To protect your system, download and install this software update from the Releases tab on the NeMo Github page. Go to NVIDIA Product Security. Details This section provides a summary of potential vulnerabilities that this security update...
NVIDIA NeMo 安全漏洞
NVIDIA NeMo is a toolkit for building new state-of-the-art conversational Ai models from NVIDIA. A security vulnerability exists in NVIDIA NeMo that originates from a path traversal issue that may be caused by a user extracting from an insecure .tar file, which could lead to code execution and da...
PT-2024-7979 · Nvidia · Nvidia Nemo
Name of the Vulnerable Software and Affected Versions: NVIDIA NeMo versions up to r2.0.0rc0 Description: The issue is related to the SaveRestoreConnector function in NVIDIA NeMo, which is associated with incorrect restriction of the directory path name with limited access. Exploitation of this...
Malicious code in @diotoborg/nemo-reprehenderit (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b4dc1bc1c432934e97b6a1fd2e19453c9d2381b91ab862b179dc8b24492333a7 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @diotoborg/nemo-voluptatibus (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8745d1330fe8b20f8a676f1d834b53d6ad43ebb059d9c96d94acd7ab78dadb6a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-8456 Malicious code in @diotoborg/nemo-voluptatibus (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8745d1330fe8b20f8a676f1d834b53d6ad43ebb059d9c96d94acd7ab78dadb6a Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @diotoborg/natus-similique-nemo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 08ea3a0d44af0ce80a8be779e4d5d744999674e21b1ae58416f3a682574478c1 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @diotoborg/totam-nemo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware bd88f8d859a39bf19875ed8405b9250aa13c5c21b3f1cca74834d9090172aed9 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @zitterorg/nemo-tenetur (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 41edbd03c6d4329bed5847f9b7b947f9220ea54a02ba2b59c008f835a1118a25 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @zitterorg/nemo-dolorem (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 73e8836ca27430f8ae61329ae104178b492bc3a1b9a6fa5d10ed3821f0013927 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-7288 Malicious code in @zitterorg/nemo-dolorem (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 73e8836ca27430f8ae61329ae104178b492bc3a1b9a6fa5d10ed3821f0013927 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2024-7286 Malicious code in @zitterorg/nemo-atque (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 5d9c1da21e7f18856e39379c221e5cc6b4d82f0d1ff647120db0b4e5a4396d5b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in @zitterorg/placeat-nemo (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d530c8423e4aaf2b74b746404a5667c393703ad6c4c4f20762badfbe9ab64269 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...