DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2024-0133

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2024-0133

CGA ID

CGA-cx6q-h2q2-52j7

Severity

4.1

Medium

CVSS V3

Summary

NVIDIA Container Toolkit allows specially crafted container image to create empty files on the host file system

Description

NVIDIA Container Toolkit 1.16.1 or earlier contains a vulnerability in the default mode of operation allowing a specially crafted container image to create empty files on the host file system. This does not impact use cases where CDI is used. A successful exploit of this vulnerability may lead to data tampering.

References

Affected packages


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images