CVE-2026-24176 | THREATINT

Description

NVIDIA KAI Scheduler contains a vulnerability where an attacker could cause improper authorization through cross-namespace pod references. A successful exploit of this vulnerability might lead to data tampering.

PUBLISHED Reserved 2026-01-21 | Published 2026-04-21 | Updated 2026-04-21 | Assigner nvidia

MEDIUM: 4.3CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Problem types

CWE-863 Incorrect Authorization

Product status

Default status

unaffected

All versions prior to 0.13.0

affected

References

nvd.nist.gov/vuln/detail/CVE-2026-24176

www.cve.org/CVERecord?id=CVE-2026-24176

nvidia.custhelp.com/app/answers/detail/a_id/5818

cve.org (CVE-2026-24176)

nvd.nist.gov (CVE-2026-24176)

Download JSON