CVE Catalog

CVE-2026-24242

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.14%

4th percentile — higher than 4% of all known CVEs

Summary

A vulnerability in NVIDIA Megatron Bridge for Linux allows an attacker to perform server-side request forgery (SSRF). Successful exploitation of this flaw could lead to information disclosure.

Risk Assessment

The risk involves potential leakage of sensitive organizational data through remote requests to internal network resources. An attacker may gain access to information that should not be publicly available.

Recommendation

It is recommended to immediately update NVIDIA Megatron Bridge to the latest patched version. Additionally, restrict access to the component and implement network traffic filtering mechanisms.

Original NVD description (English source)

NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause server-side request forgery. A successful exploit of this vulnerability might lead to information disclosure.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS