Vulnerability in Nvidia Container Toolkit
CVE-2024-0137
NVIDIA Container Toolkit contains an improper isolation vulnerability where a specially crafted container image could lead to untrusted code running in the host’s network namespace. This vulnerability is present only when the NVIDIA Contai…
EPSS: 0.001 (22.1th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 5.5 (Medium). Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L.
Affected products
- Nvidia Container Toolkit — versions All versions up to and including v1.17.0
- Nvidia Gpu Operator — versions All versions up to and including 24.9.0
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2024-0137?
- CVE-2024-0137 is a medium-severity vulnerability in Nvidia Container Toolkit, classified under CWE-653. CVSS score: 5.5/10. Published 2025-01-28.
- How severe is CVE-2024-0137?
- Medium severity. CVSS v3 base score is 5.5 out of 10.