What is the CVSS score of CVE-2026-24150?

CVE-2026-24150 has a CVSS 3.1 base score of 7.8 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.1%.

Which versions of Nvidia are affected by CVE-2026-24150?

NVIDIA Megatron-LM contains a critical remote code execution vulnerability in checkpoint file loading that could allow attackers to execute arbitrary code if users load malicious model files.

How to fix or mitigate CVE-2026-24150?

Within 24 hours: Inventory all systems running Megatron-LM and restrict checkpoint file loading to trusted internal sources only; disable remote checkpoint loading if not operationally critical. Within 7 days: Implement file integrity monitoring on checkpoint repositories and conduct security awareness training on social engineering risks related to model file distribution. Within 30 days: Establish a secure checkpoint validation pipeline, monitor NVIDIA security advisories for patch availability, and prepare for rapid deployment once patches are released.

Nvidia CVE-2026-24150

EUVD-2026-15005 HIGH

Deserialization of Untrusted Data (CWE-502)

2026-03-24 nvidia

GHSA-r99w-qgv6-8r5p

RCE Information Disclosure Nvidia Deserialization

7.8

CVSS 3.1 · NVD

Severity by source

NVD PRIMARY

7.8 HIGH

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

EUVD ID Assigned

Mar 24, 2026 - 20:31 euvd

EUVD-2026-15005

Analysis Generated

Mar 24, 2026 - 20:31 vuln.today

CVE Published

Mar 24, 2026 - 20:24 nvd

HIGH 7.8

DescriptionCVE.org

NVIDIA Megatron-LM contains a vulnerability in checkpoint loading where an Attacker may cause an RCE by convincing a user to load a maliciously crafted file. A successful exploit of this vulnerability may lead to code execution, escalation of privileges, information disclosure, and data tampering.

AnalysisAI

NVIDIA Megatron-LM contains an unsafe deserialization vulnerability (CWE-502) in its checkpoint loading functionality that allows remote code execution when a user is tricked into loading a maliciously crafted checkpoint file. The vulnerability affects NVIDIA Megatron-LM installations and can lead to code execution, privilege escalation, information disclosure, and data tampering with a CVSS score of 7.8. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Craft malicious checkpoint file

Exploit

Convince user to load checkpoint in Megatron-LM

Execution

Deserialize untrusted data

Impact

Execute arbitrary code with user privileges

Access

Craft malicious checkpoint file

Exploit

Convince user to load checkpoint in Megatron-LM

Execution

Deserialize untrusted data

Impact

Execute arbitrary code with user privileges

Vulnerability AssessmentAI

Exploitation	Low-privilege local user must convince victim to load a maliciously crafted checkpoint file into NVIDIA Megatron-LM. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	The CVSS vector (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) indicates this is a local attack requiring low privileges and no user interaction, with high impact across confidentiality, integrity, and availability. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An attacker creates a malicious Megatron-LM checkpoint file embedded with arbitrary Python code using pickle serialization exploitation techniques. The attacker distributes this checkpoint through ML model sharing platforms, research repositories, or social engineering, convincing a researcher or ML engineer to download and load it into their training environment. …
Remediation	Consult the official NVIDIA security advisory at https://nvidia.custhelp.com/app/answers/detail/a_id/5769 for patched versions and upgrade instructions specific to your Megatron-LM deployment. … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Inventory all systems running Megatron-LM and restrict checkpoint file loading to trusted internal sources only; disable remote checkpoint loading if not operationally critical. …

Threat intelligence, references, and detailed analysis are available after sign-in.

More from same product – last 7 days

CVE-2026-55447 CRITICAL Act Now

9.6 Jun 19

Arbitrary file read leading to remote code execution affects Langflow versions prior to 1.9.2 in any flow that uses Base

CVE-2026-53805 CRITICAL Act Now

9.3 Jun 17

Unauthenticated remote code execution in NVIDIA Spatial Intelligence Lab's GEN3C inference API server allows network att

CVE-2026-24155 HIGH This Week

7.8 Jun 16

Code injection in NVIDIA NeMo Framework across all supported platforms allows a local attacker with low privileges to ex

CVE-2026-24228 HIGH This Week

7.8 Jun 16

Local code execution in NVIDIA NeMo Framework on Linux allows an authenticated low-privileged attacker to abuse unsafe d

CVE-2026-24150 vulnerability details – vuln.today

Back

Nvidia CVE-2026-24150

Severity by source

CVSS VectorNVD

Lifecycle Timeline

DescriptionCVE.org

AnalysisAI

Unlock full vulnerability intelligence

Attack ChainAIDerived

Vulnerability AssessmentAI

Recommended ActionAI

More from same product – last 7 days

Share

External POC / Exploit Code