CVE-2026-24243

Severity CVSS v4.0:
Pending analysis
Type:
CWE-502 Deserialization of Untrusted Dat
Publication date:
01/07/2026
Last modified:
02/07/2026

Description

NVIDIA Megatron Bridge for Linux contains a vulnerability where an attacker could cause deserialization of untrusted data. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, and information disclosure.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:nvidia:nemo_megatron_bridge:*:*:*:*:*:*:*:* 0.4.1 (excluding)
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*