nvd-json-data-feeds/CVE-2024/CVE-2024-01xx/CVE-2024-0142.json

{
  "id": "CVE-2024-0142",
  "sourceIdentifier": "psirt@nvidia.com",
  "published": "2025-02-12T00:15:08.423",
  "lastModified": "2025-02-12T01:15:08.230",
  "vulnStatus": "Awaiting Analysis",
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "NVIDIA nvJPEG2000 library contains a vulnerability where an attacker can cause an out-of-bounds write issue by means of a specially crafted JPEG2000 file. A successful exploit of this vulnerability might lead to code execution and data tampering."
    },
    {
      "lang": "es",
      "value": "NVIDIA nvJPEG2000 librer\u00eda contiene una vulnerabilidad en la que un atacante puede provocar un problema de escritura fuera de los l\u00edmites mediante un archivo JPEG2000 manipulado especial. Una explotaci\u00f3n exitosa de esta vulnerabilidad podr\u00eda provocar la ejecuci\u00f3n de c\u00f3digo y la manipulaci\u00f3n de datos."
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "psirt@nvidia.com",
        "type": "Secondary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:H",
          "baseScore": 6.8,
          "baseSeverity": "MEDIUM",
          "attackVector": "NETWORK",
          "attackComplexity": "HIGH",
          "privilegesRequired": "NONE",
          "userInteraction": "REQUIRED",
          "scope": "UNCHANGED",
          "confidentialityImpact": "NONE",
          "integrityImpact": "HIGH",
          "availabilityImpact": "HIGH"
        },
        "exploitabilityScore": 1.6,
        "impactScore": 5.2
      }
    ]
  },
  "weaknesses": [
    {
      "source": "psirt@nvidia.com",
      "type": "Secondary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5596",
      "source": "psirt@nvidia.com"
    },
    {
      "url": "https://www.talosintelligence.com/vulnerability_reports/TALOS-2024-2080",
      "source": "af854a3a-2127-422b-91ae-364da2661108"
    }
  ]
}