NVIDIA CUDA toolkit for Windows and Linux contains a vulnerability in the nvdisasm command line tool where an attacker may cause an improper validation in input issue by tricking the user into running nvdisasm on a malicious ELF file. A successful exploit of this vulnerability may lead to denial of service.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Thu, 18 Sep 2025 18:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:nvidia:cuda_toolkit:12.6.0:-:*:*:*:*:*:*
cpe:2.3:a:nvidia:cuda_toolkit:12.6.0:update1:*:*:*:*:*:*

Thu, 18 Sep 2025 18:00:00 +0000

Type Values Removed Values Added
First Time appeared Linux
Linux linux Kernel
Microsoft
Microsoft windows
CPEs cpe:2.3:a:nvidia:cuda_toolkit:*:*:*:*:*:*:*:*
cpe:2.3:a:nvidia:cuda_toolkit:12.6.0:-:*:*:*:*:*:*
cpe:2.3:a:nvidia:cuda_toolkit:12.6.0:update1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
Microsoft
Microsoft windows

Fri, 04 Oct 2024 07:00:00 +0000

Type Values Removed Values Added
Title NVIDIA CUDA Toolkit: improper input validation may lead to DoS
References
Metrics threat_severity

None

threat_severity

Low


Thu, 03 Oct 2024 18:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 03 Oct 2024 17:00:00 +0000

Type Values Removed Values Added
Description NVIDIA CUDA toolkit for Windows and Linux contains a vulnerability in the nvdisasm command line tool where an attacker may cause an improper validation in input issue by tricking the user into running nvdisasm on a malicious ELF file. A successful exploit of this vulnerability may lead to denial of service.
Weaknesses CWE-1285
References
Metrics cvssV3_1

{'score': 3.3, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: nvidia

Published:

Updated: 2024-10-03T17:27:29.639Z

Reserved: 2023-12-02T00:42:33.637Z

Link: CVE-2024-0123

cve-icon Vulnrichment

Updated: 2024-10-03T17:27:05.624Z

cve-icon NVD

Status : Analyzed

Published: 2024-10-03T17:15:14.030

Modified: 2025-09-18T18:10:58.990

Link: CVE-2024-0123

cve-icon Redhat

Severity : Low

Publid Date: 2024-10-03T16:45:15Z

Links: CVE-2024-0123 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2025-07-12T22:09:38Z