CVE-2026-24241

MEDIUM4.3Auth bypass

Description

NVIDIA Delegated Licensing Service for all appliance platforms contains a vulnerability where an attacker could exploit an improper authentication issue. A successful exploit of this vulnerability might lead to information disclosure.

CVSS breakdown

CVSS 3.1

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

Low

Integrity

None

Availability

None

Affected products

NVIDIA / DLS component of NVIDIA License SystemAll versions prior to v3.6 – All versions prior to v3.6
NVIDIA / DLS component of NVIDIA License SystemAll versions prior to v3.1.8 – All versions prior to v3.1.8

References

CONFIRMhttps://nvd.nist.gov/vuln/detail/CVE-2026-24241
CONFIRMhttps://www.cve.org/CVERecord?id=CVE-2026-24241
MISChttps://nvidia.custhelp.com/app/answers/detail/a_id/5789