CVE-2024-0115

MEDIUM EPSS 13.5%
Published Aug 12, 20241y ago · Modified Jun 17, 20262w ago
6.1 CVSS 3.1
Medium
Find Similar
Published Aug 12, 2024 1y ago
Last Modified Jun 17, 2026 2w ago

Description

NVIDIA CV-CUDA for Ubuntu 20.04, Ubuntu 22.04, and Jetpack contains a vulnerability in Python APIs where a user may cause an uncontrolled resource consumption issue by a long running CV-CUDA Python process. A successful exploit of this vulnerability may lead to denial of service and data loss.

CVSS Details

Base Score
6.1
Exploitability
1.8
Impact
4.2
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity Low
Availability High

Threat Intelligence

EPSS Exploit Probability
13.5% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-400 Uncontrolled Resource Consumption Resource Mgmt

Affected Products 14

VendorProductVersionRange
nvidiacv-cuda0.1.0any
nvidiacv-cuda0.2.0any
nvidiacv-cuda0.2.1any
nvidiacv-cuda0.3.0any
nvidiacv-cuda0.3.1any
nvidiacv-cuda0.4.0any
nvidiacv-cuda0.5.0any
nvidiacv-cuda0.6.0any
nvidiacv-cuda0.7.0any
nvidiacv-cuda0.8.0any
nvidiacv-cuda0.9.0any
nvidiajetpack_software_development_kit*any
canonicalubuntu_linux20.04any
canonicalubuntu_linux22.04any

References 1

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.