Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
%20Race%20Condition&color=brightgreen)
NVIDIA Container Toolkit 1.16.1 or earlier contains a Time-of-check Time-of-Use (TOCTOU) vulnerability when used with default configuration where a specifically crafted container image may gain access to the host file system. This does not impact use cases where CDI is used. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
No PoCs from references.
- https://github.com/ARPSyndicate/cve-scores
- https://github.com/EGI-Federation/SVG-advisories
- https://github.com/ctrsploit/ctrsploit
- https://github.com/lgturatti/techdrops
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/pawan-shivarkar/pawan-shivarkar
- https://github.com/r0binak/CVE-2024-0132
- https://github.com/rix4uni/medium-writeups
- https://github.com/ssst0n3/docker_archive
- https://github.com/ssst0n3/poc-cve-2024-0132
- https://github.com/tanjiti/sec_profile
- https://github.com/zhanpengliu-tencent/medium-cve