CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-0136

NVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted container image could lead to untrusted code obtaining read and write access to host devices. This vulnerability is present only when the NVIDIA Container Toolkit is configured in a nondefault way. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 50.9%

CVSS Severity

CVSS v3 Score 7.6

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5599

Products affected by CVE-2024-0136

Nvidia » Nvidia Container Toolkit » Version: 1.16.0

cpe:2.3:a:nvidia:nvidia_container_toolkit:1.16.0
Nvidia » Nvidia Container Toolkit » Version: 1.16.1

cpe:2.3:a:nvidia:nvidia_container_toolkit:1.16.1
Nvidia » Nvidia Container Toolkit » Version: 1.16.2

cpe:2.3:a:nvidia:nvidia_container_toolkit:1.16.2
Nvidia » Nvidia Container Toolkit » Version: 1.17.0

cpe:2.3:a:nvidia:nvidia_container_toolkit:1.17.0
Nvidia » Nvidia Container Toolkit » Version: 1.17.1

cpe:2.3:a:nvidia:nvidia_container_toolkit:1.17.1
Nvidia » Nvidia Container Toolkit » Version: 1.17.2

cpe:2.3:a:nvidia:nvidia_container_toolkit:1.17.2
Nvidia » Nvidia Gpu Operator » Version: 1.0.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.0.0
Nvidia » Nvidia Gpu Operator » Version: 1.1.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.1.0
Nvidia » Nvidia Gpu Operator » Version: 1.10.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.10.0
Nvidia » Nvidia Gpu Operator » Version: 1.10.1

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.10.1
Nvidia » Nvidia Gpu Operator » Version: 1.11.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.11.0
Nvidia » Nvidia Gpu Operator » Version: 1.11.1

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.11.1
Nvidia » Nvidia Gpu Operator » Version: 1.2.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.2.0
Nvidia » Nvidia Gpu Operator » Version: 1.3.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.3.0
Nvidia » Nvidia Gpu Operator » Version: 1.4.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.4.0
Nvidia » Nvidia Gpu Operator » Version: 1.5.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.5.0
Nvidia » Nvidia Gpu Operator » Version: 1.5.1

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.5.1
Nvidia » Nvidia Gpu Operator » Version: 1.5.2

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.5.2
Nvidia » Nvidia Gpu Operator » Version: 1.6.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.6.0
Nvidia » Nvidia Gpu Operator » Version: 1.6.1

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.6.1
Nvidia » Nvidia Gpu Operator » Version: 1.6.2

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.6.2
Nvidia » Nvidia Gpu Operator » Version: 1.7.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.7.0
Nvidia » Nvidia Gpu Operator » Version: 1.7.1

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.7.1
Nvidia » Nvidia Gpu Operator » Version: 1.8.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.8.0
Nvidia » Nvidia Gpu Operator » Version: 1.8.1

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.8.1
Nvidia » Nvidia Gpu Operator » Version: 1.8.2

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.8.2
Nvidia » Nvidia Gpu Operator » Version: 1.9.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.9.0
Nvidia » Nvidia Gpu Operator » Version: 1.9.1

cpe:2.3:a:nvidia:nvidia_gpu_operator:1.9.1
Nvidia » Nvidia Gpu Operator » Version: 22.9.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:22.9.0
Nvidia » Nvidia Gpu Operator » Version: 22.9.1

cpe:2.3:a:nvidia:nvidia_gpu_operator:22.9.1
Nvidia » Nvidia Gpu Operator » Version: 22.9.2

cpe:2.3:a:nvidia:nvidia_gpu_operator:22.9.2
Nvidia » Nvidia Gpu Operator » Version: 23.3.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:23.3.0
Nvidia » Nvidia Gpu Operator » Version: 23.3.1

cpe:2.3:a:nvidia:nvidia_gpu_operator:23.3.1
Nvidia » Nvidia Gpu Operator » Version: 23.3.2

cpe:2.3:a:nvidia:nvidia_gpu_operator:23.3.2
Nvidia » Nvidia Gpu Operator » Version: 23.6.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:23.6.0
Nvidia » Nvidia Gpu Operator » Version: 23.6.1

cpe:2.3:a:nvidia:nvidia_gpu_operator:23.6.1
Nvidia » Nvidia Gpu Operator » Version: 23.6.2

cpe:2.3:a:nvidia:nvidia_gpu_operator:23.6.2
Nvidia » Nvidia Gpu Operator » Version: 23.9.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:23.9.0
Nvidia » Nvidia Gpu Operator » Version: 23.9.1

cpe:2.3:a:nvidia:nvidia_gpu_operator:23.9.1
Nvidia » Nvidia Gpu Operator » Version: 23.9.2

cpe:2.3:a:nvidia:nvidia_gpu_operator:23.9.2
Nvidia » Nvidia Gpu Operator » Version: 24.3.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:24.3.0
Nvidia » Nvidia Gpu Operator » Version: 24.6.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:24.6.0
Nvidia » Nvidia Gpu Operator » Version: 24.6.1

cpe:2.3:a:nvidia:nvidia_gpu_operator:24.6.1
Nvidia » Nvidia Gpu Operator » Version: 24.6.2

cpe:2.3:a:nvidia:nvidia_gpu_operator:24.6.2
Nvidia » Nvidia Gpu Operator » Version: 24.9.0

cpe:2.3:a:nvidia:nvidia_gpu_operator:24.9.0
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-0136

Products

Pricing

Contact Us