suse · CVE-2024-0135

Quick triage

Priority: high Published: 2025-01-29 01:07:12 UTC Updated: 2025-12-23 01:52:06 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2024-0135 severity important: SUSE including 1 source package names (nvidia-container-toolkit-1.18.0-150200.5.17.1), 17 product×package rows across 17 product lines (SUSE Enterprise Storage 7.1, SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS, … (17 product lines)): Fixed 17.

Description:

NVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted container image could lead to modification of a host binary. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.

cvelogic Threat Intelligence