Home / Vulnerability Intelligence / CVE-2026-24164

CVE-2026-24164 - Vulnerability Analysis

HighCVSS: 8.8

Last Updated: March 31, 2026

NVIDIA BioNeMo - Insecure Deserialization

Published: March 31, 2026Updated: March 31, 2026Remote Exploitable

Overview

NVIDIA BioNeMo contains an insecure deserialization vulnerability caused by deserialization of untrusted data, letting attackers execute code, cause denial of service, disclose information, and tamper data, exploit requires crafted input.

Severity & Score

Severity: High

CVSS Score: 8.8

Impact

Attackers can execute code, cause denial of service, disclose sensitive information, and tamper data.

Mitigation

Update to the latest version.

References

https://nvd.nist.gov/vuln/detail/CVE-2026-24164
https://nvidia.custhelp.com/app/answers/detail/a_id/5808
https://www.cve.org/CVERecord?id=CVE-2026-24164

Related Resources

Vulnerability Intelligence Dashboard
Credential Scanner

Details

CVE ID: CVE-2026-24164
Severity: High
CVSS Score: 8.8
Type: insecure_deserialization
Status: new

CWE

CWE-502

CVSS Metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H