CVE-2026-24221
Undergoing Analysis
Undergoing Analysis - In Progress
Improper Deserialization in NVIDIA NVTabular
Publication date: 2026-06-02
Last updated on: 2026-06-02
Assigner: NVIDIA Corporation
Description
Description
NVIDIA NVTabular contains a vulnerability where an attacker could cause improper deserialization of untrusted data. A successful exploit of this vulnerability might lead to code execution, data tampering and information disclosure.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| nvidia | nvtabular | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-502 | The product deserializes untrusted data without sufficiently ensuring that the resulting data will be valid. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
CVE-2026-24221 is a vulnerability in NVIDIA NVTabular involving improper deserialization of untrusted data. This means that the software incorrectly processes data from untrusted sources, which can allow an attacker to manipulate the deserialization process.
A successful exploit of this vulnerability could lead to arbitrary code execution, data tampering, and information disclosure.
How can this vulnerability impact me? :
If exploited, this vulnerability can have serious impacts including:
- Execution of arbitrary code by an attacker, potentially allowing full control over the affected system.
- Tampering with data, which could compromise data integrity.
- Disclosure of sensitive information, leading to privacy breaches or leakage of confidential data.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70