CVE-2026-24186
published 2026-04-28CVE-2026-24186: NVIDIA FLARE SDK contains a vulnerability in FOBS, where an attacker may cause deserialization of untrusted data by sending a malicious FOBS- encoded message…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
NVIDIA FLARE SDK contains a vulnerability in FOBS, where an attacker may cause deserialization of untrusted data by sending a malicious FOBS- encoded message. A successful exploit of this vulnerability might lead to code execution.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nvidia | flare_sdk | — | — |
| nvidia | nvflare | < 2.7.2 | 2.7.2 |