CVSS: 4.4EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23247
https://notcve.org/view.php?id=CVE-2025-23247
27 May 2025 — NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a failure to check the length of a buffer could allow a user to cause the tool to crash or execute arbitrary code by passing in a malformed ELF file. A successful exploit of this vulnerability might lead to arbitrary code execution. • https://nvidia.custhelp.com/app/answers/detail/a_id/5643 • CWE-130: Improper Handling of Length Parameter Inconsistency •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2024-0109
https://notcve.org/view.php?id=CVE-2024-0109
31 Aug 2024 — NVIDIA CUDA Toolkit contains a vulnerability in command `cuobjdump` where a user may cause a crash by passing in a malformed ELF file. A successful exploit of this vulnerability may cause an out of bounds read in the unprivileged process memory which could lead to a limited denial of service. • https://nvidia.custhelp.com/app/answers/detail/a_id/5564 • CWE-125: Out-of-bounds Read •