CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23360
https://notcve.org/view.php?id=CVE-2025-23360
11 Mar 2025 — NVIDIA Nemo Framework contains a vulnerability where a user could cause a relative path traversal issue by arbitrary file write. A successful exploit of this vulnerability may lead to code execution and data tampering. • https://nvidia.custhelp.com/app/answers/detail/a_id/5623 • CWE-23: Relative Path Traversal •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23243 – NVIDIA Riva gRPC API Missing Authentication for Critical Function Authentication Bypass Vulnerability
https://notcve.org/view.php?id=CVE-2025-23243
11 Mar 2025 — NVIDIA Riva contains a vulnerability where a user could cause an improper access control issue. A successful exploit of this vulnerability might lead to data tampering or denial of service. This vulnerability allows remote attackers to bypass authentication on affected installations of NVIDIA Riva. Authentication is not required to exploit this vulnerability. The specific flaw exists within the riva_quickstart component. The issue results from the lack of authentication prior to allowing access to functiona... • https://nvidia.custhelp.com/app/answers/detail/a_id/5625 • CWE-284: Improper Access Control •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23242 – NVIDIA Riva Triton Inference Server Missing Authentication Vulnerability
https://notcve.org/view.php?id=CVE-2025-23242
11 Mar 2025 — NVIDIA Riva contains a vulnerability where a user could cause an improper access control issue. A successful exploit of this vulnerability might lead to escalation of privileges, data tampering, denial of service, or information disclosure. This vulnerability allows remote attackers to access protected functionality on affected installations of NVIDIA Riva. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of the Triton Inference Server. The issu... • https://nvidia.custhelp.com/app/answers/detail/a_id/5625 • CWE-284: Improper Access Control •
CVSS: 2.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-53879
https://notcve.org/view.php?id=CVE-2024-53879
25 Feb 2025 — NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the cuobjdump binary, where a user could cause a crash by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service. • https://nvidia.custhelp.com/app/answers/detail/a_id/5594 • CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 2.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-53878
https://notcve.org/view.php?id=CVE-2024-53878
25 Feb 2025 — NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the cuobjdump binary, where a user could cause a crash by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service. • https://nvidia.custhelp.com/app/answers/detail/a_id/5594 • CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-53877
https://notcve.org/view.php?id=CVE-2024-53877
25 Feb 2025 — NVIDIA CUDA toolkit for all platforms contains a vulnerability in the nvdisasm binary, where a user could cause a NULL pointer exception by passing a malformed ELF file to nvdisasm. A successful exploit of this vulnerability might lead to a partial denial of service. • https://nvidia.custhelp.com/app/answers/detail/a_id/5594 • CWE-476: NULL Pointer Dereference •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-53876
https://notcve.org/view.php?id=CVE-2024-53876
25 Feb 2025 — NVIDIA CUDA toolkit for all platforms contains a vulnerability in the nvdisasm binary, where a user could cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successful exploit of this vulnerability might lead to a partial denial of service. • https://nvidia.custhelp.com/app/answers/detail/a_id/5594 • CWE-125: Out-of-bounds Read •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-53875
https://notcve.org/view.php?id=CVE-2024-53875
25 Feb 2025 — NVIDIA CUDA toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a user could cause an out-of-bounds read by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service. • https://nvidia.custhelp.com/app/answers/detail/a_id/5594 • CWE-125: Out-of-bounds Read •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-53874
https://notcve.org/view.php?id=CVE-2024-53874
25 Feb 2025 — NVIDIA CUDA toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a user could cause an out-of-bounds read by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service. • https://nvidia.custhelp.com/app/answers/detail/a_id/5594 • CWE-125: Out-of-bounds Read •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-53873
https://notcve.org/view.php?id=CVE-2024-53873
25 Feb 2025 — NVIDIA CUDA toolkit for Windows contains a vulnerability in the cuobjdump binary, where a user could cause an out-of-bounds read by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service. • https://nvidia.custhelp.com/app/answers/detail/a_id/5594 • CWE-125: Out-of-bounds Read •