CVE-2026-24241

CWE-287 — Improper Authentication3 documents3 sources

Severity

7.5HIGH

EPSS

0.1%

top 68.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nvidia Delegated License Service Nvidia DLS Component OF Nvidia License System

Timeline

PublishedFeb 24

Description

NVIDIA Delegated Licensing Service for all appliance platforms contains a vulnerability where an attacker could exploit an improper authentication issue. A successful exploit of this vulnerability might lead to information disclosure.

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages2 packages

▶NVDnvidia/delegated_license_service3.2.0 — 3.6.0+1

▶CVEListV5nvidia/dls_component_of_nvidia_license_systemAll versions prior to v3.1.8, All versions prior to v3.6+1

🔴Vulnerability Details

GHSA

GHSA-hr94-5hp8-p3qr: NVIDIA Delegated Licensing Service for all appliance platforms contains a vulnerability where an attacker could exploit an improper authentication iss↗2026-02-24

▶

CVEList

CVE-2026-24241: NVIDIA Delegated Licensing Service for all appliance platforms contains a vulnerability where an attacker could exploit an improper authentication iss↗2026-02-24

▶