Published on 03 Oct 2024
NVIDIA has released security updates addressing a high severity vulnerability (CVE-2024-0132) affecting their Container Toolkit and GPU Operator.
Successful exploitation of the Time-of-Check Time-of-Use (TOCTOU) vulnerability could allow an attacker to perform container escape attacks and gain access to the host file system, enabling them to perform code execution, denial of service, escalation of privileges, information disclosure and data tampering on the host machine.
The vulnerability affects the following products:
Users and administrators of affected product versions are advised to update to the latest version immediately.
More information is available here: