Multiple Vulnerabilities Discovered in NVIDIA CUDA Toolkit
1 min read
Summary
Unit 42, the threat intelligence team at Palo Alto Networks, has revealed nine vulnerabilities affecting two NVIDIA tools, cuobjdump and nvdisasm, which are part of the company’s CUDA Toolkit.
-CUDA is a parallel computing platform and programming model introduced by NVIDIA in 2006 and widely used to create software to run on the firm’s graphics processing unit (GPU) hardware.
The two utilities are used to analyse CUDA binary files.
While the vulnerabilities could lead to limited denial of service or limited information disclosure, attackers could target organisations through vulnerable versions of the software in targeted developer environments.
Palo Alto Networks customers are protected from the potential impact of these vulnerabilities through the firm’s Next-Generation Firewall with Cloud-Delivered Security Services and Advanced Threat Prevention.
Unit 42 recommends users update to the latest version of CUDA to avoid any risks from the vulnerabilities.
