CVE-2024-0141

NVIDIA Hopper HGX for 8-GPU contains a vulnerability in the GPU vBIOS that may allow a malicious actor with tenant level GPU access to write to an unsupported registry causing a bad state. A successful exploit of this vulnerability may lead to denial of service.

CVSS v3 6.8 MEDIUM

6.8^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.3 / Impact : 4.0

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://nvidia.custhelp.com/app/answers/detail/a_id/5561

Configurations

No configuration.

History

15 Apr 2026, 00:35

Type	Values Removed	Values Added
Summary		(es) NVIDIA Hopper HGX para 8 GPU contiene una vulnerabilidad en el vBIOS de la GPU que puede permitir que un agente malintencionado con acceso a la GPU a nivel de tenant escriba en un registro no compatible, lo que provoca un estado incorrecto. Una explotación exitosa de esta vulnerabilidad puede provocar la denegación de servicio.

05 Mar 2025, 02:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-03-05 02:15

Updated : 2026-04-15 00:35

NVD link : CVE-2024-0141

Mitre link : CVE-2024-0141

CVE.ORG link : CVE-2024-0141

JSON object : View

Products Affected

No product.

CWE

CWE-782

Exposed IOCTL with Insufficient Access Control

6.8 /10