cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-0129,https://securityvulnerability.io/vulnerability/CVE-2024-0129,NVIDIA NeMo Vulnerability Could Lead to Code Execution and Data Tampering,"The vulnerability in NVIDIA NeMo's SaveRestoreConnector component arises from improper handling of .tar file extractions, leading to potential path traversal. If exploited, attackers may manipulate file paths to access restricted areas of the file system, potentially allowing them to execute arbitrary code and tamper with sensitive data. This vulnerability underscores the importance of secure file handling practices in software development. Users and administrators of NVIDIA NeMo are urged to apply the necessary updates to mitigate the risk associated with unsafe file operations.",Nvidia,Nemo,7.8,HIGH,0.0004400000034365803,false,false,false,false,,false,false,2024-10-15T05:39:01.225Z,0
CVE-2024-0081,https://securityvulnerability.io/vulnerability/CVE-2024-0081,NVIDIA NeMo Framework Vulnerability Could Lead to Server-Side Denial of Service,"The NVIDIA NeMo framework for Ubuntu contains a vulnerability located in tools/asr_webapp that permits an attacker to allocate resources without appropriate limits or controls. Exploiting this vulnerability successfully could result in a denial of service on the server side, impacting the availability of applications and services reliant on the NeMo framework.",Nvidia,Nemo,8.6,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-04-05T19:15:00.000Z,0
CVE-2022-22821,https://securityvulnerability.io/vulnerability/CVE-2022-22821,,"NVIDIA NeMo before 1.6.0 contains a vulnerability in ASR WebApp, in which ../ Path Traversal may lead to deletion of any directory when admin privileges are available.",Nvidia,Nemo,2,LOW,0.0004400000034365803,false,false,false,false,,false,false,2022-01-10T14:12:00.000Z,0