CVE-2024-0137

MEDIUM Year: 2024
CVSS v3 Score
5.5
Medium
Weakness Type
CWE-653
View all →

Vulnerability Description

NVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted container image could lead to untrusted code running in the host’s network namespace. This vulnerability is present only when the NVIDIA Container Toolkit is configured in a nondefault way. A successful exploit of this vulnerability may lead to denial of service and escalation of privileges.

Related Vulnerabilities

CVE-2023-29580

MEDIUM
CVSS:5.5(Medium)

yasm 1.3.0.55.g101bc was discovered to contain a segmentation violation via the component yasm_expr_create at /libyasm/expr.c.

CWE-6532023

CVE-2024-35425

MEDIUM
CVSS:5.5(Medium)

vmir e8117 was discovered to contain a segmentation violation via the function_prepare_parse function at /src/vmir_function.c.

CWE-6532024

CVE-2025-26393

MEDIUM
CVSS:5.4(Medium)

SolarWinds Service Desk is affected by a broken access control vulnerability. The issue allows authenticated users to escalate privileges, leading to unauthorized data manipulation.

CWE-6532025

CVE-2023-1636

MEDIUM
CVSS:5.0(Medium)

A vulnerability was found in OpenStack Barbican containers. This vulnerability is only applicable to deployments that utilize an all-in-one configuration. Barbican containers share the same CGROUP, US...

CWE-6532023

CVE-2024-30388

HIGH
CVSS:6.5(Medium)

An Improper Isolation or Compartmentalization vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on QFX5000 Series and EX Series allows an unauthenticated, adjacent attac...

CWE-6532024

CVE-2024-55456

MEDIUM
CVSS:6.5(Medium)

lunasvg v3.0.1 was discovered to contain a segmentation violation via the component gray_find_cell

CWE-6532024