NVIDIA Omniverse Launcher 1.4.0 for Linux

CPE Details

NVIDIA Omniverse Launcher 1.4.0 for Linux
nvidia
omniverse_launcher
1.4.0
2023-08-08
15h01 +00:00
2023-08-09
14h44 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:nvidia:omniverse_launcher:1.4.0:*:*:*:*:linux:*:*

Informations

Vendor

nvidia

Product

omniverse_launcher

Version

1.4.0

Target Software

linux

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2023-25524 2023-08-03 16h34 +00:00 NVIDIA Omniverse Workstation Launcher for Windows and Linux contains a vulnerability in the authentication flow, where a user’s access token is displayed in the browser user's address bar. An attacker could use this token to impersonate the user to access launcher resources. A successful exploit of this vulnerability may lead to information disclosure.
5.3
Medium
CVE-2022-21817 2022-02-02 11h17 +00:00 NVIDIA Omniverse Launcher contains a Cross-Origin Resource Sharing (CORS) vulnerability which can allow an unprivileged remote attacker, if they can get user to browse malicious site, to acquire access tokens allowing them to access resources in other security domains, which may lead to code execution, escalation of privileges, and impact to confidentiality and integrity.
9.3
Critical