SECURITY ALERT: NVIDIA Container Toolkit Vulnerabilities (CVE-2024-0132 and CVE-2024-0133)

Product / Version includes:

Last updated: 2024/09/27

Solution ID: KA-0017897

Category:

Summary

On September 26, 2024, NVIDIA released a security bulletin publicly disclosing two (2) vulnerabilities in their Container Toolkit, which if exploited, could allow an attacker to gain unauthorized access to the to the host's file system. Both vulnerabilities are reported to be Time-of-check Time-of-use types, which could lead to consequences such as code execution, escalation of privileges, denial of service, information disclosure or data tampering. One of the vulnerabilities (CVE-2024-0132) has been assigned a Critical CVSS rating of 9.0, while the second one (CVE-2024-0133) is rated as a Medium CVSS 4.1.

More detailed information on the vulnerability itself and impact can be found in the following Trend Micro blog: Delivering Proactive Protection Against Critical Threats to NVIDIA-powered AI Systems.

These vulnerabilities have been reported to impact the following:

NVIDIA Container Toolkit version 1.16.1 or earlier
NVIDIA GPU Operator versions 24.6.1 or earlier
Using default configuration
Cases where the Container Device Interface (CDI) is used are said to be not impacted.

Trend Micro Protection and Detection Against Exploitation

First and foremost, it is always recommended that users apply vendor-specific patches when they are available. In this case, NVIDIA has released the following patches in response to the vulnerabilities and customers are strongly encouraged to update as soon as possible:

NVIDIA Container Toolkit 1.16.2 has been released that resolves the issue.
NVIDIA GPU Operator update to version 24.6.2 also resolves issues related to this component.

In addition to the vendor patch(s) that should be applied, Trend Micro has released some updates that may help provide additional protection and detection of malicious components associated with this vulnerability.

Trend Vision One™

Trend Micro has added Time-Critical Vulnerability alert in the Trend Vision One Executive Dashboard that will be continually updated with additional information related to prevention and detection as it becomes available.

Trend Vision One™ Container Security

Trend Vision One Container Security customers can use this proactive technology to uncover vulnerabilities, malware, and compliance violations within container images by detecting this vulnerability on the pipeline and allowing administrators to use admission control policy enforcement to block new container images in production. In addition, runtime detection is available. Scanning for CVE-2024-0132 is now available and will also reflect in Vision One's Attack Surface Risk Management (ASRM).

Was this article helpful?

Featured

Automation Center

Education Portal

Online Help Center

Service Status

TrendConnect

SECURITY ALERT: NVIDIA Container Toolkit Vulnerabilities (CVE-2024-0132 and CVE-2024-0133)

Trend Micro Protection and Detection Against Exploitation

SECURITY ALERT: NVIDIA Container Toolkit Vulnerabilities (CVE-2024-0132 and CVE-2024-0133)

Product / Version includes:

Summary

Trend Micro Protection and Detection Against Exploitation