NVIDIA CUDA Toolkit for Windows and Linux contains a vulnerability in the nvdisam command line tool, where a user can cause a NULL pointer dereference by running nvdisasm on a malformed ELF file. A successful exploit of this vulnerability might lead to a limited denial of service.
History

Fri, 04 Oct 2024 07:00:00 +0000

Type Values Removed Values Added
Title NVIDIA CUDA Toolkit: NULL pointer dereference via malformed ELF file
References
Metrics threat_severity

None

threat_severity

Low


Thu, 03 Oct 2024 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 03 Oct 2024 17:00:00 +0000

Type Values Removed Values Added
Description NVIDIA CUDA Toolkit for Windows and Linux contains a vulnerability in the nvdisam command line tool, where a user can cause a NULL pointer dereference by running nvdisasm on a malformed ELF file. A successful exploit of this vulnerability might lead to a limited denial of service.
Weaknesses CWE-476
References
Metrics cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: nvidia

Published: 2024-10-03T16:46:19.800Z

Updated: 2024-10-03T17:24:07.074Z

Reserved: 2023-12-02T00:42:36.041Z

Link: CVE-2024-0125

cve-icon Vulnrichment

Updated: 2024-10-03T17:24:03.165Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-10-03T17:15:14.490

Modified: 2024-10-04T13:50:43.727

Link: CVE-2024-0125

cve-icon Redhat

Severity : Low

Publid Date: 2024-10-03T16:46:19Z

Links: CVE-2024-0125 - Bugzilla