Trend Micro Flags Incomplete Nvidia Patch That Leaves AI Containers Exposed

Security researchers at Trend Micro are flagging problems with Nvidia’s patch for a critical vulnerability in the Nvidia Container Toolkit, warning that the incomplete mitigation leaves enterprises exposed to container escape attacks.

The flaw, tagged as CVE-2024-0132 with a CVSS score of 9/10, was patched last September as a high-priority issue but now comes word from Trend Micro that the patch is “incomplete” and left the door ajar for hackers to execute arbitrary commands, compromise sensitive data, or escalate privileges on an affected system.

According to Trend Micro’s analysis, a specially crafted container can exploit the TOCTOU timing window between when a container’s access to the host file system is checked and when the access is actually executed.

This gap allows an attacker to inject operations that bypass the intended isolation, effectively letting the container access or manipulate host resources. The oversight here lies in the ...