CVE-2024-0088

NVIDIA Triton Inference Server for Linux contains a vulnerability in shared memory APIs, where a user can cause an improper memory access issue by a network API. A successful exploit of this vulnerability might lead to denial of service and data tampering.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 0.7 / Impact : 4.7

Attack Vector NETWORK

Attack Complexity HIGH

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact LOW

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://nvidia.custhelp.com/app/answers/detail/a_id/5535
https://nvidia.custhelp.com/app/answers/detail/a_id/5535

Configurations

No configuration.

History

21 Nov 2024, 08:45

Type	Values Removed	Values Added
Summary		(es) NVIDIA Triton Inference Server para Linux contiene una vulnerabilidad en las API de memoria compartida, donde un usuario puede causar un problema de acceso inadecuado a la memoria mediante una API de red. Una explotación exitosa de esta vulnerabilidad podría provocar denegación de servicio y manipulación de datos.
References	~~() https://nvidia.custhelp.com/app/answers/detail/a_id/5535 -~~	() https://nvidia.custhelp.com/app/answers/detail/a_id/5535 -

14 May 2024, 14:39

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-05-14 14:39

Updated : 2024-11-21 08:45

NVD link : CVE-2024-0088

Mitre link : CVE-2024-0088

CVE.ORG link : CVE-2024-0088

JSON object : View

Products Affected

No product.

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

5.5 /10