CVE Catalog

CVE-2026-24245

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.15%

4th percentile — higher than 4% of all known CVEs

Summary

A vulnerability in NVIDIA Megatron Bridge for Linux allows deserialization of untrusted data. An attacker could exploit this flaw to achieve code execution, privilege escalation, data tampering, and information disclosure.

Risk Assessment

The organization risks system takeover, data theft, and integrity compromise. This attack could lead to full compromise of the IT environment.

Recommendation

Apply the update provided by NVIDIA for the Megatron Bridge component immediately. Until the patch is deployed, restrict access to the vulnerable interface and monitor for suspicious activity.

Original NVD description (English source)

NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of untrusted data. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, and information disclosure.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS