CVE-2026-24149

Code Injection Vulnerability in NVIDIA Megatron-LM Leading to Code Execution

Description

NVIDIA Megatron-LM for all platforms contains a vulnerability in a script, where malicious data created by an attacker may cause a code injection issue. A successful exploit of this vulnerability may lead to code execution, escalation of privileges, information disclosure, data tampering.

INFO

Published Date :

2026-02-03T19:55:41.704Z

Last Modified :

2026-02-03T20:28:28.082Z

Source :

nvidia

AFFECTED PRODUCTS

The following products are affected by CVE-2026-24149 vulnerability.

Vendors	Products
Nvidia	Megatron-lm

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-24149.

URL	Resource
https://nvd.nist.gov/vuln/detail/CVE-2026-24149
https://www.cve.org/CVERecord?id=CVE-2026-24149

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact