NVIDIA NVFlare Dashboard contains a vulnerability in the user management and authentication system where an unauthenticated attacker may cause authorization bypass through user-controlled key. A successful exploit of this vulnerability may lead to privilege escalation, data tampering, information disclosure, code execution, and denial of service.
| Vendor | Product | Versions |
|---|---|---|
| nvidia | nvflare dashboard | All versions prior to 2.7.2 |
Updated severity from CRITICAL to HIGH and marked the vulnerability as actively exploited.
Initial creation
