Primary

Context

NVIDIA DALI Deserialization Vulnerability Leading to Arbitrary Code Execution

Vulnerability

A deserialization vulnerability has been identified in NVIDIA DALI, allowing an attacker to manipulate untrusted data. Exploiting this vulnerability could result in arbitrary code execution.

Impact

Successful exploitation allows for arbitrary code execution on the affected system.

Remediation

Users are advised to update NVIDIA DALI to version 2.0 or later. The update can be downloaded from the NVIDIA DALI GitHub repository or via the DALI installation instructions available on the NVIDIA website.

Added: Apr 7, 2026, 7:17 PM

Updated: Apr 7, 2026, 7:17 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.6

remediation

0.0

relevance

5.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.6

remediation

0.0

relevance

5.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NVIDIA DALI Deserialization Vulnerability Leading to Arbitrary Code Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating