CVE-2024-53877 — NULL Pointer Dereference in Nvidia Cuda Toolkit

CWE-476 — NULL Pointer Dereference7 documents6 sources

Severity

3.3LOWNVD

EPSS

0.0%

top 87.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nvidia Cuda Toolkit

Timeline

PublishedFeb 25

Description

NVIDIA CUDA toolkit for all platforms contains a vulnerability in the nvdisasm binary, where a user could cause a NULL pointer exception by passing a malformed ELF file to nvdisasm. A successful exploit of this vulnerability might lead to a partial denial of service.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:LExploitability: 1.8 | Impact: 1.4

Affected Packages2 packages

▶NVDnvidia/cuda_toolkit< 12.8.0

▶CVEListV5nvidia/cuda_toolkitAll versions up to CUDA Toolkit 12.8

🔴Vulnerability Details

OSV

CVE-2024-53877: NVIDIA CUDA toolkit for all platforms contains a vulnerability in the nvdisasm binary, where a user could cause a NULL pointer exception by passing a↗2025-02-25

▶

CVEList

CVE-2024-53877: NVIDIA CUDA toolkit for all platforms contains a vulnerability in the nvdisasm binary, where a user could cause a NULL pointer exception by passing a↗2025-02-25

▶

GHSA

GHSA-4776-6pq8-cq78: NVIDIA CUDA toolkit for all platforms contains a vulnerability in the nvdisasm binary, where a user could cause a NULL pointer exception by passing a↗2025-02-25

▶

📋Vendor Advisories

Debian

CVE-2024-53877: nvidia-cuda-toolkit - NVIDIA CUDA toolkit for all platforms contains a vulnerability in the nvdisasm b...↗2024

▶

🕵️Threat Intelligence

Unit42

Multiple Vulnerabilities Discovered in NVIDIA CUDA Toolkit↗2025-02-19

▶