CVE-2024-10190: Horovod Vulnerable to Command Injection

March 20, 2025

Horovod versions up to and including v0.28.1 are vulnerable to unauthenticated remote code execution. The vulnerability is due to improper handling of base64-encoded data in the ElasticRendezvousHandler, a subclass of KVStoreHandler. Specifically, the _put_value method in ElasticRendezvousHandler calls codec.loads_base64(value), which eventually invokes cloudpickle.loads(decoded). This allows an attacker to send a malicious pickle object via a PUT request, leading to arbitrary code execution on the server.

References

github.com/advisories/GHSA-mrhh-3ggq-23p2
github.com/horovod/horovod
huntr.com/bounties/3e398d1f-70c2-4e05-ae22-f5d66b19a754
nvd.nist.gov/vuln/detail/CVE-2024-10190

Detect and mitigate CVE-2024-10190 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →