Main Vulnerability Database Exploits ID:11164 - Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in NVIDIA Container Toolkit and NVIDIA GPU Operator - CVE-2024-0132

ID:11164 - Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in NVIDIA Container Toolkit and NVIDIA GPU Operator - CVE-2024-0132

Published: February 21, 2025

Vulnerability identifier: #VU97846

Vulnerability risk: Medium

CVE-ID: CVE-2024-0132

CWE-ID: CWE-367

Exploitation vector: Remote access

Vulnerable software:
NVIDIA Container Toolkit
NVIDIA GPU Operator

Link to public exploit:

https://github.com/ssst0n3/poc-cve-2024-0132

Vulnerability description

The vulnerability allows a remote attacker to compromise the target system.

The vulnerability exists due to a time-of-check, time-of-use (TOCTOU) race condition. A remote user can execute arbitrary code to the system.

Remediation

Install updates from vendor's website.

ID:11164 - Exploit for Time-of-check Time-of-use (TOCTOU) Race Condition in NVIDIA Container Toolkit and NVIDIA GPU Operator - CVE-2024-0132

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human