Primary

Context

NVIDIA RunAI Improper Communication Channel Restriction Vulnerability Leading to Privilege Escalation and Data Issues

Vulnerability

A vulnerability exists in NVIDIA RunAI for all platforms, where improper restrictions on communication channels can be exploited to affect adjacent networks. This vulnerability could lead to unauthorized privilege escalation, data tampering, and information disclosure.

Impact

Exploitation of this vulnerability could result in unauthorized privilege escalation, allowing users to gain elevated rights or access. Additionally, it could lead to unauthorized modification of data and disclosure of sensitive information.

Remediation

Users are advised to upgrade to NVIDIA RunAI version 2.22.48 or later. Instructions for upgrading can be found in the NVIDIA RunAI documentation.

Added: Nov 4, 2025, 8:20 PM

Updated: Nov 4, 2025, 8:20 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

3.5

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

3.5

remediation

7.7

relevance

0.9

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NVIDIA RunAI Improper Communication Channel Restriction Vulnerability Leading to Privilege Escalation and Data Issues

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating