logo

NVIDIA Security Updates Fix Critical Device Vulnerabilities

ID: 06c7c278-4a5a-573d-92a7-60ea1ec29360

STIX ID: report--06c7c278-4a5a-573d-92a7-60ea1ec29360

Feed Name: securityonline.info

Threat Score
65/100

Date Published: 2026-07-01

Date Updated: 2026-07-02

Author: Do Son

...
...

NVIDIA released patches for 13 vulnerabilities across BlueField, ConnectX, and Megatron Bridge platforms — including two critical CVEs allowing local arbitrary code execution via VF access (CVSS 9.0) and several high-severity Megatron deserialization/input-validation flaws (CVSS 7.8). Administrators are urged to apply firmware updates for BlueField/ConnectX and upgrade Megatron Bridge to 0.4.1 or later; no public PoC or in-the-wild exploitation has been reported.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.