From this webpage screenshot, the following key vulnerability information can be obtained: 1. Vulnerability Description: - CVE ID: CVE-2024-0129 - Description: NVIDIA NeMo contains a vulnerability named SaveRestoreConnector, where users can exploit insecure .tar file extraction to cause a path traversal issue. Successful exploitation of this vulnerability may lead to code execution and data tampering. 2. Vulnerability Severity: - Base Score: 6.3 - Severity: Medium - CWE: CWE-22 - Impact: Code execution, data tampering 3. Affected Products: - Product: NVIDIA NeMo - Platform or Operating System: Windows, Linux, MacOS 4. Affected Versions: - All Versions: All versions prior to r2.0.0rc0 5. Updated Version: - Updated Version: r2.0.0rc0 6. Security Update: - Affected CVE ID: CVE-2024-0129 - Affected Product: NVIDIA NeMo - Affected Platform or Operating System: Windows, Linux, MacOS - Affected Versions: All versions prior to r2.0.0rc0 - Updated Version: r2.0.0rc0 7. Disclaimer: - All information and documentation provided by NVIDIA (including design specifications, reference boards, files, drawings, diagnostic lists, etc.) are provided "as is" without any express or implied warranties, including but not limited to warranties of merchantability, fitness for a particular purpose, or non-infringement. 8. Support Information: - For any questions regarding this security bulletin, please contact NVIDIA Support. This information helps users understand the October 2024 security update for NVIDIA NeMo, including detailed vulnerability descriptions, severity, affected products and versions, and how to download and apply the update.