VYPR
Unrated severityNVD Advisory· Published Oct 15, 2024· Updated Oct 15, 2024

CVE-2024-0129

CVE-2024-0129

Description

NVIDIA NeMo contains a vulnerability in SaveRestoreConnector where a user may cause a path traversal issue via an unsafe .tar file extraction. A successful exploit of this vulnerability may lead to code execution and data tampering.

Affected products

2
  • Nvidia/Nemollm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: All versions prior to r2.0.0rc0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.