The company added that, under certain circumstances, the successful exploitation of the vulnerability might allow code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Time of Check Time of Use vulnerability
Nvidia Container Toolkit allows Nvidia containers, which are specialized software packages designed to facilitate the deployment of applications particularly involving artificial intelligence and machine learning use cases, to access the GPU hardware. It includes tools and libraries that enable applications running inside containers to utilize the GPU.
According to a Wiz Research blog post, whose researchers Nvidia has credited for the discovery of the vulnerability, the flaw enables attackers controlling a toolkit-executed container image, a lightweight, standalone, executable package containing everything required to run an application, to escape that container and gain full access to the host.