AVID-2026-R1366

Description

Unauthenticated Remote Code Execution in ElasticRendezvousHandler in horovod/horovod (CVE-2024-10190)

Details

Horovod versions up to and including v0.28.1 are vulnerable to unauthenticated remote code execution. The vulnerability is due to improper handling of base64-encoded data in the ElasticRendezvousHandler, a subclass of KVStoreHandler. Specifically, the _put_value method in ElasticRendezvousHandler calls codec.loads_base64(value), which eventually invokes cloudpickle.loads(decoded). This allows an attacker to send a malicious pickle object via a PUT request, leading to arbitrary code execution on the server.

Reason for inclusion in AVID: CVE-2024-10190 describes unauthenticated remote code execution via deserialization in Horovod’s ElasticRendezvousHandler. Horovod is a software library widely used in AI model training and distributed ML pipelines, making this a software supply chain vulnerability affecting AI systems. The report includes the vulnerability details (attack via base64-encoded data leading to code execution), affected versions, CVSS metrics, and references, providing sufficient signal for curation.

References

• NVD entry
• https://huntr.com/bounties/3e398d1f-70c2-4e05-ae22-f5d66b19a754

Affected or Relevant Artifacts

• Developer: horovod
• Deployer: horovod
• Artifact Details:

Impact

AVID Taxonomy Categorization

• Risk domains: Security
• SEP subcategories: S0100: Software Vulnerability
• Lifecycle stages: L06: Deployment

CVSS

CWE

Other information

• Report Type: Advisory
• Credits:
• Date Reported: 2025-03-20
• Version: 0.3.3
• AVID Entry