cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-0134,https://securityvulnerability.io/vulnerability/CVE-2024-0134,Unauthorized Files Creation Vulnerability Affects NVIDIA Container Toolkit and GPU Operator for Linux,NVIDIA Container Toolkit and NVIDIA GPU Operator for Linux contain a UNIX vulnerability where a specially crafted container image can lead to the creation of unauthorized files on the host. The name and location of the files cannot be controlled by an attacker. A successful exploit of this vulnerability might lead to data tampering.,Nvidia,"Nvidia Container Toolkit,Nvidia Gpu Operator",4.1,MEDIUM,0.00044999999227002263,false,false,false,false,,false,false,2024-11-05T18:37:31.699Z,0
CVE-2024-0133,https://securityvulnerability.io/vulnerability/CVE-2024-0133,NVIDIA Container Toolkit Vulnerability Could Lead to Data Tampering,NVIDIA Container Toolkit 1.16.1 or earlier contains a vulnerability in the default mode of operation allowing a specially crafted container image to create empty files on the host file system. This does not impact use cases where CDI is used. A successful exploit of this vulnerability may lead to data tampering.,Nvidia,"Container Toolkit,Gpu Operator",3.4,LOW,0.0004600000102072954,false,false,false,false,,false,false,2024-09-26T05:21:33.599Z,0
CVE-2024-0132,https://securityvulnerability.io/vulnerability/CVE-2024-0132,NVIDIA Container Toolkit Vulnerability Allows for File System Access,"The NVIDIA Container Toolkit versions up to 1.16.1 possess a Time-of-Check Time-of-Use (TOCTOU) vulnerability that arises when the tool is utilized with its default configurations. A specially crafted container image can exploit this vulnerability to gain unauthorized access to the host file system. This situation creates several security concerns, such as unauthorized code execution, potential denial of service, privilege escalation, and possibilities for information disclosure and data tampering. The vulnerability is mitigated when Container Device Interface (CDI) is implemented.",Nvidia,"Container Toolkit,Gpu Operator",8.3,HIGH,0.000910000002477318,false,true,false,true,,false,false,2024-09-26T05:18:33.211Z,0