nvidia

907 tracked vulnerabilities.

CVE-2026-24160 MEDIUM
NVIDIA TensorRT-LLM < 1.2 - Denial of Service via Unchecked Return Value
May 20, 2026
CVSS 5.5
EPSS 0.00
CVE-2026-24142 MEDIUM
NVIDIA TensorRT-LLM < 1.2 - Remote Code Execution via Unsafe Deserialization
May 20, 2026
CVSS 6.3
EPSS 0.00
CVE-2026-24231 MEDIUM
NVIDIA NemoClaw < 0.0.13 - Server-Side Request Forgery via validateEndpointUrl() Bypass
Apr 28, 2026
CVSS 6.3
EPSS 0.00
CVE-2026-24222 HIGH
NVIDIA NeMoClaw < 0.0.18 - Exposure of Sensitive System Information via Sandbox Environment Initialization
Apr 28, 2026
CVSS 8.6
EPSS 0.00
CVE-2026-24204 MEDIUM
NVIDIA FLARE SDK < 2.7.2 - Path Traversal and Information Disclosure
Apr 28, 2026
CVSS 6.5
EPSS 0.00
CVE-2026-24186 HIGH
NVIDIA FLARE SDK <2.7.2 - Deserialization
Apr 28, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-24178 CRITICAL
NVIDIA FLARE SDK < 2.7.2 - Unauthenticated Authorization Bypass via User-Controlled Key
Apr 28, 2026
CVSS 9.8
EPSS 0.01
CVE-2026-24189 HIGH
NVIDIA CUDA-Q < 0.14.0 - Unauthenticated Out-of-Bounds Read via Maliciously Crafted Request
Apr 21, 2026
CVSS 8.2
EPSS 0.00
CVE-2026-24177 HIGH
NVIDIA KAI Scheduler < 0.13.0 - Unauthenticated Information Disclosure via API Endpoints
Apr 21, 2026
CVSS 7.7
EPSS 0.00
CVE-2026-24176 MEDIUM
NVIDIA KAI Scheduler <0.13.0 - Auth Bypass
Apr 21, 2026
CVSS 4.3
EPSS 0.00
CVE-2026-24175 HIGH
NVIDIA Triton Inference Server < 26.02 - Denial of Service via Malformed Request Header
Apr 07, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-24174 HIGH
NVIDIA Triton Inference Server < 26.02 - Denial of Service via Malformed Request
Apr 07, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-24173 HIGH
NVIDIA Triton Inference Server < 26.02 - Denial of Service via Malformed Request
Apr 07, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-24156 HIGH
NVIDIA DALI < 2.0 - Remote Code Execution via Untrusted Data Deserialization
Apr 07, 2026
CVSS 7.3
EPSS 0.00
CVE-2026-24147 MEDIUM
NVIDIA Triton Inference Server < 26.02 - Path Traversal via Model Configuration Upload
Apr 07, 2026
CVSS 4.8
EPSS 0.00
CVE-2026-24146 HIGH
NVIDIA Triton Inference Server < 26.02 - Denial of Service via Large Output Count
Apr 07, 2026
CVSS 7.5
EPSS 0.01
CVE-2026-24165 HIGH
NVIDIA BioNeMo Framework - Deserialization of Untrusted Data
Mar 31, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-24164 HIGH
NVIDIA BioNeMo Framework - Deserialization of Untrusted Data
Mar 31, 2026
CVSS 8.8
EPSS 0.00
CVE-2026-24154 HIGH
Nvidia Jetson Xavier Series, Jetson Orin Series And Jetson Thor - Denial of Service
Mar 31, 2026
CVSS 7.6
EPSS 0.00
CVE-2026-24153 MEDIUM
Nvidia Jetson Xavier Series, Jetson Orin Series And Jetson Thor - Information Disclosure
Mar 31, 2026
CVSS 5.2
EPSS 0.00
CVE-2026-24148 HIGH
NVIDIA Jetson Xavier Series and Jetson Orin Series < 35.6.4 - Insecure Default Resource Initialization
Mar 31, 2026
CVSS 8.3
EPSS 0.00
CVE-2026-24159 HIGH
NVIDIA NeMo Framework < 2.6.2 - Remote Code Execution via Untrusted Data Deserialization
Mar 24, 2026
CVSS 7.8
EPSS 0.01
CVE-2026-24158 HIGH
NVIDIA Triton Inference Server < 26.01 - Denial of Service via Large Compressed HTTP Payload
Mar 24, 2026
CVSS 7.5
EPSS 0.00
CVE-2026-24157 HIGH
NVIDIA NeMo Framework < 2.6.2 - Remote Code Execution via Checkpoint Loading
Mar 24, 2026
CVSS 7.8
EPSS 0.01
CVE-2026-24152 HIGH
NVIDIA Megatron LM < 0.15.3 - Remote Code Execution via Checkpoint Loading
Mar 24, 2026
CVSS 7.8
EPSS 0.00