Primary

Context

NVIDIA AIStore AuthN Component Privilege Escalation, Information Disclosure, and Data Tampering Vulnerability

Vulnerability

A vulnerability exists in the AuthN component of NVIDIA AIStore, affecting all versions prior to 3.31. This vulnerability could be exploited to escalate privileges, disclose information, and tamper with data.

Impact

Exploitation of this vulnerability could lead to unauthorized privilege escalation, allowing users to gain elevated rights or access. Additionally, it could result in unauthorized information disclosure and data tampering, compromising the integrity and confidentiality of the data.

Remediation

Users are advised to update to version 3.31 of the AIStore AuthN component. The latest version can be downloaded from the NVIDIA Docker Hub.

Added: Nov 11, 2025, 5:59 PM

Updated: Nov 11, 2025, 5:59 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

7.4

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NVIDIA AIStore AuthN Component Privilege Escalation, Information Disclosure, and Data Tampering Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating