Lucene search
K

43 matches found

Positive Technologies
Positive Technologies
added 2025/05/17 12:0 a.m.7 views

PT-2025-29902

Name of the Vulnerable Software and Affected Versions NVIDIA Container Toolkit versions up to 1.17.7 GPU Operator versions up to 25.3.0 NVIDIA Container Toolkit versions 1.17.8 and 25.3.1 are fixed. Description A critical vulnerability CVE-2025-23266, dubbed “NVIDIAScape”, exists in the NVIDIA...

9.9CVSS7.3AI score0.37055EPSS
Exploits14References143
BDU FSTEC
BDU FSTEC
added 2025/02/26 12:0 a.m.5 views

The vulnerability of software for creating and running NVIDIA Container Toolkit containers, as well as software for managing NVIDIA GPU resources, relates to synchronization errors when using shared resources. This “race condition” allows a malicious actor to execute code.

The vulnerability of the software for creating and running NVIDIA Container Toolkit containers, as well as the NVIDIA GPU Operator resource management software, is related to synchronization errors when using shared resources. Exploiting this vulnerability allows a remote attacker to execute...

8.3CVSS8.4AI score0.03361EPSS
Exploits1References7Affected Software3
Positive Technologies
Positive Technologies
added 2025/02/11 12:0 a.m.5 views

PT-2025-6424

Name of the Vulnerable Software and Affected Versions NVIDIA Container Toolkit versions up to and including 1.17.3 NVIDIA GPU Operator versions up to and including 24.9.1 Description NVIDIA Container Toolkit and NVIDIA GPU Operator are affected by a Time-of-Check Time-of-Use TOCTOU vulnerability...

8.3CVSS9.4AI score0.03361EPSS
Exploits1References52
Chainguard
Chainguard
added 2025/01/29 6:15 p.m.11 views

CVE-2025-24882 vulnerabilities

Vulnerabilities for packages: guac...

5.2CVSS6AI score0.00172EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/12/07 8:0 a.m.6 views

NVIDIA Container Toolkit and NVIDIA GPU Operator for Linux contain a UNIX vulnerability where a specially crafted container image can lead to the creation of unauthorized files on the host.

...

4.1CVSS6.1AI score0.00376EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/11/14 12:0 a.m.5 views

The software used for creating and running NVIDIA Container Toolkit containers, as well as the NVIDIA GPU Operator resource management software, is vulnerable. This vulnerability allows attackers to compromise data integrity.

The vulnerability of the software for creating and running NVIDIA Container Toolkit containers, as well as the NVIDIA GPU Operator resource management software, is related to errors in processing symbolic links. Exploiting this vulnerability can allow an attacker to compromise data integrity...

4.1CVSS6.4AI score0.00376EPSS
Exploits0References6Affected Software3
OSV
OSV
added 2024/11/05 7:15 p.m.4 views

CVE-2024-0134

NVIDIA Container Toolkit and NVIDIA GPU Operator for Linux contain a UNIX vulnerability where a specially crafted container image can lead to the creation of unauthorized files on the host. The name and location of the files cannot be controlled by an attacker. A successful exploit of this...

4.1CVSS5.8AI score0.00376EPSS
Exploits0References1
NVD
NVD
added 2024/11/05 7:15 p.m.11 views

CVE-2024-0134

NVIDIA Container Toolkit and NVIDIA GPU Operator for Linux contain a UNIX vulnerability where a specially crafted container image can lead to the creation of unauthorized files on the host. The name and location of the files cannot be controlled by an attacker. A successful exploit of this...

4.1CVSS0.00376EPSS
Exploits0References1
OSV
OSV
added 2024/11/05 7:15 p.m.7 views

AZL-52393 CVE-2024-0134 affecting package nvidia-container-toolkit for versions less than 1.17.1-1

NVIDIA Container Toolkit and NVIDIA GPU Operator for Linux contain a UNIX vulnerability where a specially crafted container image can lead to the creation of unauthorized files on the host. The name and location of the files cannot be controlled by an attacker. A successful exploit of this...

4.1CVSS6.6AI score0.00376EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/05 6:37 p.m.10 views

CVE-2024-0134

NVIDIA Container Toolkit and NVIDIA GPU Operator for Linux contain a UNIX vulnerability where a specially crafted container image can lead to the creation of unauthorized files on the host. The name and location of the files cannot be controlled by an attacker. A successful exploit of this...

4.1CVSS4.4AI score0.00376EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/05 6:37 p.m.16 views

CVE-2024-0134

NVIDIA Container Toolkit and NVIDIA GPU Operator for Linux contain a UNIX vulnerability where a specially crafted container image can lead to the creation of unauthorized files on the host. The name and location of the files cannot be controlled by an attacker. A successful exploit of this...

4.1CVSS0.00376EPSS
Exploits0References1
CVE
CVE
added 2024/11/05 6:37 p.m.292 views

CVE-2024-0134

CVE-2024-0134 affects the NVIDIA Container Toolkit and NVIDIA GPU Operator for Linux. A specially crafted container image can create unauthorized files on the host, with naming and location control not possible by the attacker, potentially enabling data tampering. Public advisories indicate remed...

4.1CVSS6.8AI score0.00376EPSS
Exploits0References1Affected Software2
CNNVD
CNNVD
added 2024/11/05 12:0 a.m.5 views

NVIDIA Container Toolkit 安全漏洞

NVIDIA Container Toolkit and NVIDIA GPU Operator are both products of NVIDIA Corporation.NVIDIA Container Toolkit is a container toolkit. NVIDIA Container Toolkit is a container toolkit that allows users to build and run GPU-accelerated containers.NVIDIA GPU Operator is a GPU management and...

4.1CVSS4.6AI score0.00376EPSS
Exploits0References2
Nvidia
Nvidia
added 2024/11/05 12:0 a.m.25 views

Security Bulletin: NVIDIA Container Toolkit - November 2024

NVIDIA has released a software update for NVIDIA® Container Toolkit and NVIDIA GPU Operator. To protect your system, install the software update as described in the installation section of the NVIDIA Container Toolkit documentation and the NVIDIA GPU Operator documentation. Go to NVIDIA Product...

4.1CVSS4.9AI score0.00376EPSS
Exploits0
Chainguard
Chainguard
added 2024/10/29 7:48 p.m.5 views

GHSA-MJJW-553X-87PQ vulnerabilities

Vulnerabilities for packages: nvidia-container-toolkit, nvidia-gpu-operator-validator...

5.9AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/10/07 12:0 a.m.7 views

The software for creating and running NVIDIA Container Toolkit containers, as well as the NVIDIA GPU Operator resource management software, is vulnerable. This vulnerability allows attackers to escalate their privileges or execute arbitrary code.

The vulnerability of software for creating and running NVIDIA Container Toolkit containers, as well as software for managing NVIDIA GPU resources, is related to the assignment of a zero pointer due to concurrent access to resources. Exploiting this vulnerability allows a malicious actor to enhanc...

9CVSS8.2AI score0.37055EPSS
Exploits2References4Affected Software3
Chainguard
Chainguard
added 2024/09/26 6:30 a.m.6 views

GHSA-536J-XXHG-6PGG vulnerabilities

Vulnerabilities for packages: nvidia-container-toolkit, gpu-operator...

7AI score
Exploits0
Chainguard
Chainguard
added 2024/09/26 6:30 a.m.4 views

GHSA-G4PJ-MX9F-M2MH vulnerabilities

Vulnerabilities for packages: nvidia-container-toolkit, gpu-operator...

7AI score
Exploits0
Chainguard
Chainguard
added 2024/09/26 6:15 a.m.12 views

CVE-2024-0133 vulnerabilities

Vulnerabilities for packages: nvidia-container-toolkit, nvidia-gpu-operator-validator...

4.1CVSS6.7AI score0.00235EPSS
Exploits0
Chainguard
Chainguard
added 2024/09/26 6:15 a.m.18 views

CVE-2024-0132 vulnerabilities

Vulnerabilities for packages: nvidia-container-toolkit, nvidia-gpu-operator-validator...

9CVSS7.3AI score0.37055EPSS
Exploits2
Rows per page
Query Builder