CVE-2024-0115

Summary

CVE-2024-0115 is a newly disclosed vulnerability affecting NVIDIA's CV-CUDA software for Ubuntu 20.04, Ubuntu 22.04, and Jetpack. This issue lies in the Python APIs of CV-CUDA, which can be exploited by users to trigger uncontrolled resource consumption. If successfully exploited, the vulnerability may result in denial of service and, in extreme cases, data loss. The root cause is a long-running CV-CUDA Python process that consumes resources beyond intended limits. Users are advised to apply the recommended patches or updates from NVIDIA as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.