PT-2025-40051 · Go · Github.Com/Nvidia/Gpu-Operator+3
Publicado
2025-07-17
·
Atualizado
2025-07-17
CVSS v3.1
9.0
Crítica
| Vetor | AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
NVIDIA Container Toolkit for all platforms contains a vulnerability in some hooks used to initialize the container, where an attacker could execute arbitrary code with elevated permissions. A successful exploit of this vulnerability might lead to escalation of privileges, data tampering, information disclosure, and denial of service.
Correção
Untrusted Search Path
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Github.Com/Nvidia/Gpu-Operator
Github.Com/Nvidia/K8S-Device-Plugin
Github.Com/Nvidia/Mig-Parted
Github.Com/Nvidia/Nvidia-Container-Toolkit