Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

Vulnerability IntelligenceCVE-2024-0133

CVE-2024-0133

MEDIUM4.1

NVIDIA Container Toolkit 1

Published Sep 26, 2024

Modified 1 years ago

Details

NVIDIA Container Toolkit 1.16.1 or earlier contains a vulnerability in the default mode of operation allowing a specially crafted container image to create empty files on the host file system. This does not impact use cases where CDI is used. A successful exploit of this vulnerability may lead to data tampering.

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5582

https://www.cve.org/CVERecord?id=CVE-2024-0133

CVSS Analysis

CVSS v3.1

4.1

Exploitability

Attack Vector

NetworkAV:N

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

RequiredUI:R

Scope

Scope

ChangedS:C

Impact

Confidentiality

NoneC:N

Integrity

LowI:L

Availability

NoneA:N

4.1/CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:N

Weakness Type (CWE)

Other

Ecosystems

Timeline

PublishedSep 26, 2024

ModifiedSep 26, 2024

CVE-2024-0133 | Mondoo Vulnerability Intelligence