Nvidia Cuda Toolkit vulnerabilities

46 known vulnerabilities affecting nvidia/cuda_toolkit.

Total CVEs
46
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH10MEDIUM10LOW26

Vulnerabilities

Page 3 of 3
CVE-2023-0193MEDIUMCVSS 4.4fixed in 12.12023-03-10
CVE-2023-0193 [MEDIUM] CWE-125 CVE-2023-0193: NVIDIA CUDA Toolkit SDK contains a vulnerability in cuobjdump, where a local user running the tool NVIDIA CUDA Toolkit SDK contains a vulnerability in cuobjdump, where a local user running the tool against a malicious binary may cause an out-of-bounds read, which may result in a limited denial of service and limited information disclosure.
nvd
CVE-2023-0196LOWCVSS 3.3fixed in 12.12023-03-02
CVE-2023-0196 [LOW] CWE-476 CVE-2023-0196: NVIDIA CUDA Toolkit SDK contains a bug in cuobjdump, where a local user running the tool against an NVIDIA CUDA Toolkit SDK contains a bug in cuobjdump, where a local user running the tool against an ill-formed binary may cause a null- pointer dereference, which may result in a limited denial of service.
nvd
CVE-2022-34667MEDIUMCVSS 4.4fixed in 11.82022-11-19
CVE-2022-34667 [MEDIUM] CWE-121 CVE-2022-34667: NVIDIA CUDA Toolkit SDK contains a stack-based buffer overflow vulnerability in cuobjdump, where an NVIDIA CUDA Toolkit SDK contains a stack-based buffer overflow vulnerability in cuobjdump, where an unprivileged remote attacker could exploit this buffer overflow condition by persuading a local user to download a specially crafted corrupted file and execute cuobjdump against it locally, which may lead to a limited denial of service and some loss of
nvd
CVE-2022-21821HIGHCVSS 7.8fixed in 11.6.22022-03-29
CVE-2022-21821 [HIGH] CWE-1285 CVE-2022-21821: NVIDIA CUDA Toolkit SDK contains an integer overflow vulnerability in cuobjdump.To exploit this vuln NVIDIA CUDA Toolkit SDK contains an integer overflow vulnerability in cuobjdump.To exploit this vulnerability, a remote attacker would require a local user to download a specially crafted, corrupted file and locally execute cuobjdump against the file. Such an attack may lead to remote code execution that causes complete denial of service and an impac
nvd
CVE-2020-5991HIGHCVSS 7.8fixed in 11.1.12020-10-30
CVE-2020-5991 [HIGH] CWE-125 CVE-2020-5991: NVIDIA CUDA Toolkit, all versions prior to 11.1.1, contains a vulnerability in the NVJPEG library in NVIDIA CUDA Toolkit, all versions prior to 11.1.1, contains a vulnerability in the NVJPEG library in which an out-of-bounds read or write operation may lead to code execution, denial of service, or information disclosure.
nvd
CVE-2011-0636LOWCVSS 2.1v3.22011-01-22
CVE-2011-0636 [LOW] CWE-200 CVE-2011-0636: The (1) cudaHostAlloc and (2) cuMemHostAlloc functions in the NVIDIA CUDA Toolkit 3.2 developer driv The (1) cudaHostAlloc and (2) cuMemHostAlloc functions in the NVIDIA CUDA Toolkit 3.2 developer drivers for Linux 260.19.26, and possibly other versions, do not initialize pinned memory, which allows local users to read potentially sensitive memory, such as file fragments during read or write operations.
nvd
← Previous3 / 3