{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-24178", "assignerOrgId": "9576f279-3576-44b5-a4af-b9a8644b2de6", "state": "PUBLISHED", "assignerShortName": "nvidia", "dateReserved": "2026-01-21T19:09:31.778Z", "datePublished": "2026-04-28T17:44:51.538Z", "dateUpdated": "2026-04-28T17:44:51.538Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "9576f279-3576-44b5-a4af-b9a8644b2de6", "shortName": "nvidia", "dateUpdated": "2026-04-28T17:44:51.538Z"}, "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-639", "description": "CWE-639 Authorization Bypass Through User-Controlled Key", "type": "CWE"}]}], "impacts": [{"descriptions": [{"lang": "en", "value": "Escalation of privilege, data tampering, information disclosure, code execution, denial of service"}]}], "affected": [{"vendor": "NVIDIA", "product": "FLARE SDK", "platforms": ["Linux/MacOS"], "versions": [{"status": "affected", "version": "All versions prior to 2.7.2"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "NVIDIA NVFlare Dashboard contains a vulnerability in the user management and authentication system where an unauthenticated attacker may cause authorization bypass through user-controlled key. A successful exploit of this vulnerability may lead to privilege escalation, data tampering, information disclosure, code execution, and denial of service.", "supportingMedia": [{"type": "text/html", "base64": true, "value": "NVIDIA NVFlare Dashboard contains a vulnerability in the user management and authentication system where an unauthenticated attacker may cause authorization bypass through user-controlled key. A successful exploit of this vulnerability may lead to privilege escalation, data tampering, information disclosure, code execution, and denial of service."}]}], "references": [{"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24178"}, {"url": "https://www.cve.org/CVERecord?id=CVE-2026-24178"}, {"url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5819"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH", "baseSeverity": "CRITICAL", "baseScore": 9.8, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"}}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "NVIDIA PSIRT"}}}}

{}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "NVIDIA NVFlare Dashboard contains a vulnerability in the user management and authentication system where an unauthenticated attacker may cause authorization bypass through user-controlled key. A successful exploit of this vulnerability may lead to privilege escalation, data tampering, information disclosure, code execution, and denial of service."}], "id": "CVE-2026-24178", "lastModified": "2026-04-28T20:10:42.070", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "psirt@nvidia.com", "type": "Secondary"}]}, "published": "2026-04-28T19:36:45.127", "references": [{"source": "psirt@nvidia.com", "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24178"}, {"source": "psirt@nvidia.com", "url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5819"}, {"source": "psirt@nvidia.com", "url": "https://www.cve.org/CVERecord?id=CVE-2026-24178"}], "sourceIdentifier": "psirt@nvidia.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-639"}], "source": "psirt@nvidia.com", "type": "Primary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-28T23:12:13.314400+00:00", "value": {"mitigation_remediation": ["Apply the official vendor patch for NVIDIA FLARE SDK as soon as it becomes available", "Restrict access to the dashboard by placing it behind a firewall or network segment that enforces strict authentication and network access policies", "Ensure that any user\u2011controlled keys are validated against a secure hash or signature before use, and audit authentication logs for unexpected key manipulation attempts"], "summary": {"action": "Immediate Patch", "impact": "Privilege Escalation"}, "threat_synthesis": {"affected_systems": "NVIDIA FLARE SDK is affected by this flaw.", "description_and_impact": "The vulnerability in NVIDIA\u2019s NVFlare Dashboard allows an unauthenticated attacker to bypass the authorization mechanism through a user\u2011controlled key. This bypass can be leveraged to gain elevated privileges, tamper with data, disclose sensitive information, execute arbitrary code, or disrupt service availability.", "risk_and_exploitability": "The CVSS score of 9.8 indicates a high\u2011risk vulnerability, and the EPSS score is not available, suggesting that the exploitation likelihood is uncertain but potentially significant. It is not listed in the CISA KEV catalog. Because the description explicitly states that an unauthenticated attacker can achieve an authorization bypass, the likely attack vector involves manipulating user\u2011controlled input (e.g., a key) supplied via the dashboard\u2019s authentication interfaces, though the precise method is not detailed in the available data."}}}}, "created": "2026-04-28T23:15:43.858158+00:00", "title": "Unauthenticated Authorization Bypass via User\u2011Controlled Key in NVIDIA FLARE Dashboard", "updated": "2026-04-28T23:15:43.858171+00:00", "vendors": []}