#ContainerToolkit

Patch now: Critical Nvidia bug allows container escape, complete host takeover

by

September 26, 2024 at 05:52PM Nvidia’s Container Toolkit has a critical bug, CVE-2024-0132, rated 9.0/10 in severity, allowing an attacker to escape containers and take over the host. Nvidia issued a fix with versions v1.16.2 and v24.6.2. The vulnerability affects cloud and AI workloads, impacting 33% of cloud environments. Wiz’s security researchers found and disclosed … Read more

Critical Nvidia Container Flaw Exposes Cloud AI Systems to Host Takeover

by

September 26, 2024 at 01:12PM Nvidia’s Container Toolkit is vulnerable to a TOCTOU flaw (CVE-2024-0132) that could allow attackers to escape containers and take control of the host system, exposing cloud environments to code execution and data tampering. The flaw affects over 35% of cloud environments using Nvidia GPUs, posing a significant threat to AI … Read more