41 matches found
CVE-2022-21821
CVE-2022-21821 involves NVIDIA CUDA Toolkit SDK, with an integer overflow in cuobjdump. The vulnerability can be triggered when a local user runs cuobjdump on a crafted file, potentially enabling remote code execution, complete denial of service, and impacts to confidentiality and integrity. The ...
CVE-2023-0193
CVE-2023-0193 : NVIDIA CUDA Toolkit SDK contains a vulnerability in the cuobjdump tool. A local user running cuobjdump against a malicious binary may trigger an out-of-bounds read, potentially causing a limited denial of service and limited information disclosure. The provided documents describe ...
CVE-2022-34667
CVE-2022-34667 affects the NVIDIA CUDA Toolkit SDK, specifically the cuobjdump component, due to a stack-based buffer overflow . An unprivileged local attacker could trigger this by convincing a user to download a crafted file and run cuobjdump locally, potentially causing a limited denial of ser...
CVE-2023-25510
CVE-2023-25510 affects the NVIDIA CUDA Toolkit SDK for Linux and Windows, where the vulnerable component is the cuobjdump tool. The root cause is a NULL pointer dereference triggered when cuobjdump processes a malformed binary, which may allow a local user to cause a limited denial of service. Th...
CVE-2024-0102
CVE-2024-0102 affects NVIDIA CUDA Toolkit components (notably nvdisasm). The vulnerability permits an out-of-bounds read when a user is deceived into reading a malformed ELF file, potentially leading to a denial of service. Reports in connected documents confirm the affected software as NVIDIA CU...
CVE-2024-53878
CVE-2024-53878 : NVIDIA CUDA Toolkit (Linux/Windows) contains a vulnerability in the cuobjdump binary where handing a malformed ELF file may crash the tool, potentially causing a partial denial of service. The available documents identify the affected component (cuobjdump) and describe the impact...
CVE-2024-53870
CVE-2024-53870 affects the NVIDIA CUDA toolkit for all platforms, specifically the cuobjdump binary, where a malformed ELF can trigger an out-of-bounds read and may lead to a partial denial of service. Connected advisories (ALAS) enumerate affected packages (cuda-toolkit, cuda-cccl, cuda-tools, c...
CVE-2023-0196
CVE-2023-0196 affects NVIDIA CUDA Toolkit SDK’s cuobjdump. The vulnerability is a null-pointer dereference triggered when cuobjdump processes an ill-formed binary, leading to a limited denial of service. The available documents consistently describe the flaw as a local issue in cuobjdump with a D...
CVE-2023-25513
The CVE-2023-25513 entry concerns NVIDIA CUDA Toolkit’s cuobjdump vulnerability. Affected component: cuobjdump binary within CUDA Toolkit for Linux/Windows. Root cause: out-of-bounds read triggered by processing a malformed input file, as described in multiple sources. Impact: attacker may cause ...
CVE-2023-25514
CVE-2023-25514 affects the NVIDIA CUDA Toolkit’s cuobjdump component on Linux and Windows. The root issue is an out-of-bounds read triggered by processing a malformed input file, leading to potential limited denial of service, code execution, and limited information disclosure. The available docu...
CVE-2024-53874
The CVE-2024-53874 entry concerns NVIDIA CUDA Toolkit (all platforms) and a vulnerability in the cuobjdump binary. A malformed ELF file can cause an out-of-bounds read, with a potential partial denial of service. The available sources describe the affected component and impact but do not provide ...
CVE-2025-23247
CVE-2025-23247 affects the NVIDIA CUDA Toolkit cuobjdump binary. The root cause is a failure to check the length of a buffer when processing ELF inputs, which can cause the tool to crash or potentially execute arbitrary code with a crafted ELF file. A GitHub exploit PoC exists for this CVE, showi...
CVE-2023-25511
The CVE-2023-25511 issue affects NVIDIA CUDA Toolkit (Linux & Windows) specifically the cuobjdump component, caused by a division-by-zero error that may crash the tool and lead to a limited denial of service. Available connected documents describe the vulnerability and its limited impact but do n...
CVE-2024-53871
Summary: CVE-2024-53871 affects the NVIDIA CUDA toolkit, specifically the nvdisasm binary, where passing a malformed ELF file can cause an out-of-bounds read and may lead to a partial denial of service. The vulnerability is listed with a low CVSS score and local attack vector. What’s affected: CU...
CVE-2024-53879
NVIDIA CUDA Toolkit cuobjdump is affected by CVE-2024-53879. The vulnerability occurs when cuobjdump processes a malformed ELF file, which can cause the process to crash and may result in a partial denial of service. Affected component: cuobjdump binary within the CUDA toolkit for Linux and Windo...
CVE-2020-5991
CVE-2020-5991 affects NVIDIA CUDA Toolkit (all versions prior to 11.1.1) due to a vulnerability in the NVJPEG library causing out-of-bounds read/write that may lead to code execution, denial of service, or information disclosure. The connected sources confirm the affected product and the nature o...
CVE-2024-0072
CVE-2024-0072 affects the NVIDIA CUDA Toolkit (all platforms) with a vulnerability in the cuobjdump and nvdisasm tools. The issue can crash the application when a user is tricked into reading a malformed ELF file, leading to a partial denial of service. The available sources describe the affected...
CVE-2024-0076
CVE-2024-0076 affects the NVIDIA CUDA Toolkit across platforms, with the vulnerable components being cuobjdump and nvdisasm . The root cause is that processing a malformed ELF file can crash the tool, potentially causing a partial denial of service . Public references consistently describe this b...
CVE-2024-0125
CVE-2024-0125 affects NVIDIA CUDA Toolkit (Windows and Linux) due to a NULL pointer dereference in the nvdisasm command when invoked on a malformed ELF file. The vulnerability could allow a limited denial of service. The issue is rooted in the nvdisasm tool within the CUDA toolkit; connected docu...
CVE-2024-53875
CVE-2024-53875 affects NVIDIA CUDA toolkit/cuobjdump. A malformed ELF can trigger an out-of-bounds read, causing partial denial of service. Connected advisories for Amazon Linux 2023 list affected packages and provide fixed package lines, e.g.: cuda-toolkit, cuda-tools-12-8, cuda-nvtx-12-8, cuda-...
CVE-2024-53873
The CVE-2024-53873 entry concerns NVIDIA CUDA Toolkit for Windows, where the cuobjdump binary may perform an out-of-bounds read when given a malformed ELF file, potentially causing a partial denial of service. Connected material confirms the issue stems from cuobjdump input handling (and related ...
CVE-2024-53876
CVE-2024-53876 affects the NVIDIA CUDA toolkit (all platforms) in the nvdisasm binary. Affected component: nvdisasm when processing a malformed ELF file. Root cause per (connected sources): out-of-bounds read potentially triggered by malformed input, with an observed impact of partial denial of s...
CVE-2024-53877
CVE-2024-53877 affects the NVIDIA CUDA Toolkit’s nvdisasm binary. A malformed ELF input can trigger a NULL pointer exception, potentially causing a partial denial of service. The CVSS base score is LOW with Local attack vector, requiring user interaction. Connected documents confirm the issue is ...
CVE-2024-53872
CVE-2024-53872 affects the NVIDIA CUDA Toolkit: the cuobjdump binary may read past the end of a malformed ELF file, enabling an out-of-bounds read and potentially causing a partial denial of service. This is the only concrete detail available in the connected documents: vulnerability resides in c...
CVE-2023-25512
The CVE-2023-25512 entry concerns NVIDIA CUDA toolkit for Linux and Windows, specifically the cuobjdump component. Affected behavior is an out-of-bounds memory read when cuobjdump processes a malformed input file. Reported impact states possible limited denial of service, code execution, and info...
CVE-2024-0124
CVE-2024-0124 affects the NVIDIA CUDA Toolkit (Windows and Linux) specifically the nvdisasm command. The flaw allows a user to cause nvdisasm to read freed memory when processing a malformed ELF file, which can lead to a limited denial of service. The available sources describe the root cause as ...
CVE-2023-25523
Summary: CVE-2023-25523 affects the NVIDIA CUDA Toolkit (Linux and Windows) via the nvdisasm binary. Vulnerability: NULL pointer dereference when processing a malformed ELF file. Impact: Partial denial of service (based on the CVE description and metrics). Affected component: nvdisasm in CUDA too...
CVE-2025-33231
CVE-2025-33231 relates to NVIDIA Nsight Systems for Windows, where insecure DLL search paths in the application’s DLL loading mechanism allow an uncontrolled search path element. This could enable local attacker code execution, privilege escalation, data tampering, DoS, or information disclosure....
CVE-2025-23271
CVE-2025-23271 affects NVIDIA CUDA Toolkit nvdisasm. A malformed ELF file passed to nvdisasm can trigger an out-of-bounds read, with the documented impact of partial denial of service. The connected Nessus/NASL advisories list this CVE among several CUDA toolkit issues, but none of the sources pr...
CVE-2025-33228
CVE-2025-33228 affects NVIDIA Nsight Systems, specifically a vulnerability in the gfx_hotspot recipe that allows an OS command injection by feeding a malicious string to the process_nsys_rep_cli.py script when invoked manually. A successful exploit could lead to code execution, privilege escalati...
CVE-2025-23338
The CVE-2025-23338 issue affects NVIDIA CUDA Toolkit’s nvdisasm on all platforms. A attacker-provided malicious ELF can cause an out-of-bounds write in nvdisasm, leading to denial of service as described in the advisory. The entry is tied to a local/privilege-limited attack surface (local vector)...
CVE-2025-23339
CVE-2025-23339 affects NVIDIA CUDA Toolkit (cuobjdump) on all platforms. The vulnerability is a stack-based buffer overflow triggered when cuobjdump processes a malicious ELF file, which may allow arbitrary code execution at the privileges of the user running cuobjdump. The available documents do...
CVE-2025-23340
CVE-2025-23340 : NVIDIA CUDA Toolkit contains a vulnerability in the nvdisasm binary where a user may incur an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successful exploit may lead to a partial denial of service. The description does not specify affected product versions b...
CVE-2025-33230
CVE-2025-33230 is described as a vulnerability in NVIDIA Nsight Systems for Linux where the .run installer accepts a malicious string in the installation path, enabling an OS command injection. The exploit is labeled as potentially leading to privilege escalation, code execution, data tampering, ...
CVE-2025-23346
CVE-2025-23346 is reported in NVIDIA CUDA Toolkit as a vulnerability in the cuobjdump binary that allows an unprivileged user to trigger a NULL pointer dereference, leading to a limited denial of service. Connected Nessus advisories (ALAS2023NVIDIA-2025-146/147/148/149/150/151/152/155) enumerate ...
CVE-2025-23248
CVE-2025-23248 affects NVIDIA CUDA Toolkit (all platforms) via the nvdisasm binary. The vulnerability arises when parsing a malformed ELF file, causing an out-of-bounds read and potentially a partial denial of service. The connected Nessus advisories reiterate this issue among a list of CUDA-rela...
CVE-2025-23308
CVE-2025-23308 affects NVIDIA CUDA Toolkit’s nvdisasm binary. The vulnerability allows a heap-based buffer overflow when a user runs nvdisasm on a malicious ELF file. A successful exploit may lead to arbitrary code execution at the privilege level of the user running nvdisasm. The issue is trigge...
CVE-2025-33229
The CVE-2025-33229 issue affects NVIDIA Nsight Visual Studio for Windows and its Nsight Monitor component. The vulnerability allows an attacker to execute arbitrary code with the same privileges as the Nsight Monitor process, potentially enabling privilege escalation, code execution, data tamperi...
CVE-2025-23275
NVIDIA CUDA Toolkit contains a concrete vulnerability in the nvJPEG component (CVE-2025-23275): a local authenticated user may cause a GPU out-of-bounds write by submitting images with certain dimensions, potentially leading to denial of service and information disclosure. This CVE is discussed i...
CVE-2025-23255
Summary of public details (CVE-2025-23248, 23255, 23271, 23273, 23274, 23275, 23308, 23338, 23339, 23340, 23346) : The Amazon Linux 2023 advisories reference multiple NVIDIA CUDA Toolkit vulnerabilities affecting nvdisasm, cuobjdump, and nvJPEG. The bullet points in the connected documents descri...
CVE-2025-23273
The CVE-2025-23273 entry concerns NVIDIA CUDA Toolkit nvJPEG, where a local authenticated user may submit a specially crafted JPEG to trigger a divide-by-zero, resulting in denial of service. Connected Nessus advisories (ALAS2023NVIDIA-2025-146/147/148/149/150/151/152/155, etc.) enumerate multipl...