🚨 BREAKING

NVIDIA NVFlare Dashboard: Critical Auth Bypass Puts Systems at Risk

/CRITICAL /CVSS 9.8/10
Written by SCW Vulnerability Desk Vulnerability Intelligence
SCW vulnerabilitycvecriticalhigh-severitycode-executioncwe-639
NVIDIA NVFlare Dashboard: Critical Auth Bypass Puts Systems at Risk

The National Vulnerability Database has disclosed CVE-2026-24178, a critical vulnerability in the NVIDIA NVFlare Dashboard. This flaw, rated 9.8 CVSS (CRITICAL), allows an unauthenticated attacker to achieve authorization bypass through a user-controlled key. This isn’t just a theoretical issue; a successful exploit could lead to privilege escalation, data tampering, information disclosure, arbitrary code execution, and denial of service.

This is a severe design flaw in the user management and authentication system. Attackers don’t need valid credentials or complex techniques; the authorization bypass is achieved by manipulating a key. The broad impact, ranging from privilege escalation to code execution, means a compromised NVFlare Dashboard could become a launchpad for deeper network penetration.

Defenders using NVFlare need to take this seriously. An unauthenticated authorization bypass is as bad as it gets. It fundamentally undermines trust in the system’s access controls. Waiting for specific patch information isn’t an option; organizations should be actively monitoring for updates and preparing to mitigate this immediately upon release.

What This Means For You

  • If your organization utilizes NVIDIA NVFlare Dashboard, you are exposed to a critical, unauthenticated authorization bypass (CVE-2026-24178). This vulnerability directly enables privilege escalation and code execution. Immediately identify all NVFlare instances, prepare for urgent patching, and review your network segmentation around these deployments.

Related ATT&CK Techniques

T1190 Exploit Public-Facing Application Initial Access T1068 Exploitation for Privilege Escalation Privilege Escalation T1204.002 Malicious File Execution

🛡️ Detection Rules

3 rules · 6 SIEM formats

3 detection rules auto-generated for this incident, mapped to MITRE ATT&CK. Sigma YAML is free — export to any SIEM format via the Intel Bot.

critical T1190 Initial Access

CVE-2026-24178 - NVFlare Dashboard Auth Bypass via User-Controlled Key

Sigma YAML — free preview 
title: CVE-2026-24178 - NVFlare Dashboard Auth Bypass via User-Controlled Key
id: scw-2026-04-28-ai-1
status: experimental
level: critical
description: |
  This rule detects attempts to exploit CVE-2026-24178 by targeting the NVFlare user login endpoint with a POST request that includes a user-controlled key in the query parameters, resulting in a successful authentication bypass (HTTP 200 OK). This is a critical initial access vector.
author: SCW Feed Engine (AI-generated)
date: 2026-04-28
references:
  - https://shimiscyberworld.com/posts/nvd-CVE-2026-24178/
tags:
  - attack.initial_access
  - attack.t1190
logsource:
    category: webserver
detection:
  selection:
      cs-uri|contains:
          - '/nvflare/user/login'
      cs-method:
          - 'POST'
      cs-uri-query|contains:
          - 'key='
      sc-status:
          - 200
  condition: selection
falsepositives:
  - Legitimate administrative activity

Source: Shimi's Cyber World · License & reuse

✓ Sigma · Splunk SPL Sentinel KQL Elastic QRadar AQL Wazuh Get rules for your SIEM →

Indicators of Compromise

IDTypeIndicator
CVE-2026-24178 Auth Bypass NVIDIA NVFlare Dashboard
CVE-2026-24178 Privilege Escalation NVIDIA NVFlare Dashboard user management and authentication system
CVE-2026-24178 Information Disclosure NVIDIA NVFlare Dashboard user management and authentication system
CVE-2026-24178 RCE NVIDIA NVFlare Dashboard user management and authentication system
CVE-2026-24178 DoS NVIDIA NVFlare Dashboard user management and authentication system

Written by SCW Vulnerability Desk

Source & Attribution
Source PlatformNVD
ChannelNational Vulnerability Database
PublishedApril 28, 2026 at 22:36 UTC

This content was AI-rewritten and enriched by Shimi's Cyber World based on the original source. All intellectual property rights remain with the original author.

Believe this infringes your rights? Submit a takedown request.

Related coverage

Featured

Daily Security Digest — 2026-04-28

80 vulnerability disclosures (20 Critical, 60 High) and 25 curated intelligence stories from 9 sources.

daily-digestvulnerabilityCVEcriticalhigh-severitycommand-injectioncwe-77cwe-78privilege-escalationcwe-269
/SCW Daily Digest /CRITICAL

CVE-2026-42431: OpenClaw Vulnerability Allows Persistent Browser Profile Mutation

CVE-2026-42431 — OpenClaw before 2026.4.8 contains a security bypass vulnerability in node.invoke(browser.proxy) that allows mutation of persistent browser profiles. Attackers can exploit this path to...

vulnerabilityCVEhigh-severitycwe-863
/SCW Vulnerability Desk /HIGH /8.1 /⚑ 3 IOCs /⚙ 2 Sigma

OpenClaw CVE-2026-42426: Improper Authorization Allows Node Pairing Bypass

CVE-2026-42426 — OpenClaw before 2026.4.8 contains an improper authorization vulnerability where the node.pair.approve method accepts operator.write scope instead of the narrower operator.pairing scope, allowing unprivileged...

vulnerabilityCVEhigh-severitycwe-863
/SCW Vulnerability Desk /HIGH /8.8 /⚑ 1 IOC /⚙ 2 Sigma