CVE-2022-22821

CVSS 2 LOWEPSS 0.3%

NVIDIA NeMo before 1.6.0 contains a vulnerability in ASR WebApp, in which ../ Path Traversal may lead to deletion of any directory when admin privileges are available.

CVSS:3.1/AC:L/AV:L/A:N/C:N/I:L/PR:H/S:U/UI:R

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/NVIDIA/NeMo/security/advisories/GHSA-rpx7-33j2-xx9x