CVE-2024-0129 | NVIDIA NeMo up to All versions r2.0.0rc0 Tar File Extraction SaveRestoreConnector path traversal

Inserito da Angelo Barbosa | Ott 15, 2024 | CVE

A vulnerability, which was classified as critical, has been found in NVIDIA NeMo up to All versions r2.0.0rc0. This issue affects the function SaveRestoreConnector of the component Tar File Extraction Handler. The manipulation leads to path traversal.

The identification of this vulnerability is CVE-2024-0129. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-0129 | NVIDIA NeMo up to All versions r2.0.0rc0 Tar File Extraction SaveRestoreConnector path traversal

Post correlati

CVE-2024-42051 | Splashtop Streamer up to 3.6.1.x on Windows temp file

CVE-2023-7127 | code-projects Automated Voting System 1.0 Login idno sql injection

CVE-2024-32807 | Brevo for WooCommerce Sendinblue Plugin up to 4.0.17 on WordPress path traversal

CVE-2024-31391 | Apache Solr Operator up to 0.8.0 log file