Lucene search
K

101 matches found

CNNVD
CNNVD
added 2025/11/18 12:0 a.m.4 views

NVIDIA Isaac-GR00T 代码注入漏洞

NVIDIA Isaac-GR00T is an open base modeling platform from NVIDIA. NVIDIA Isaac-GR00T suffers from a code injection vulnerability that stems from a code injection issue in the Python component that could lead to code execution, elevation of privilege, information disclosure, and data tampering...

7.8CVSS7.2AI score0.00432EPSS
Exploits0References4
Nvidia
Nvidia
added 2025/11/18 12:0 a.m.10 views

Security Bulletin: NVIDIA Isaac-GR00T - November 2025

NVIDIA has released a software update for NVIDIA Isaac-GR00T. To protect your system, install software from GitHub commit 7f53666 of NVIDIA Isaac-GR00T. Go to NVIDIA Product Security...

7.8CVSS7AI score0.00432EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2025/11/18 12:0 a.m.5 views

NVIDIA Isaac-GR00T 代码注入漏洞

NVIDIA Isaac-GR00T is an open base modeling platform from NVIDIA. NVIDIA Isaac-GR00T suffers from a code injection vulnerability that stems from a code injection issue in the Python component that could lead to code execution, elevation of privilege, information disclosure, and data tampering...

7.8CVSS7.2AI score0.00432EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/11/18 12:0 a.m.5 views

PT-2025-47348

Name of the Vulnerable Software and Affected Versions NVIDIA Isaac-GR00T affected versions not specified Description The NVIDIA Isaac-GR00T robotics platform contains a flaw related to improper code generation management. Exploitation of this issue could allow a remote attacker to execute arbitra...

7.8CVSS7.9AI score0.00432EPSS
Exploits0References11
Snyk
Snyk
added 2025/10/14 6:44 p.m.6 views

Eval Injection

Overview isaaclab is an Isaac Lab Affected versions of this package are vulnerable to Eval Injection via the SB3 configuration parsing. An attacker can execute arbitrary code, escalate privileges, cause denial of service, disclose sensitive information, or tamper with data by providing a speciall...

8.5CVSS7.7AI score0.00149EPSS
Exploits0References2
vulnersOsv
vulnersOsv
added 2025/10/14 6:44 p.m.3 views

sai-isaac (>=0.0.5 <=0.0.7) potentially affected by CVE-2025-23356 via isaaclab (=2.0.2)

isaaclab PYPI version =2.0.2 is affected by a known vulnerability. The following packages have a transitive dependency on isaaclab and may be impacted: - sai-isaac =0.0.5, =0.0.7 Source cves: CVE-2025-23356 Source advisory: SNYK:PYTHON-ISAACLAB-13553157...

8.4CVSS5.8AI score0.00149EPSS
Exploits0
EUVD
EUVD
added 2025/10/14 6:30 p.m.6 views

EUVD-2025-34446

NVIDIA Isaac Lab contains a vulnerability in SB3 configuration parsing. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering...

8.4CVSS6.7AI score0.00149EPSS
Exploits0References2
NVD
NVD
added 2025/10/14 6:15 p.m.4 views

CVE-2025-23356

NVIDIA Isaac Lab contains a vulnerability in SB3 configuration parsing. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering...

8.4CVSS0.00149EPSS
Exploits0References1
CVE
CVE
added 2025/10/14 5:39 p.m.13 views

CVE-2025-23356

NVIDIA Isaac Lab (SB3 configuration parsing) is vulnerable under CVE-2025-23356. Affected component: SB3 configuration parsing in Isaac Lab within the NVIDIA Isaac Lab/Isaac Sim framework. Root cause: improper parsing of SB3 configuration data could allow arbitrary actions if exploited. Potential...

8.4CVSS6.9AI score0.00149EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/14 5:39 p.m.12 views

CVE-2025-23356

NVIDIA Isaac Lab contains a vulnerability in SB3 configuration parsing. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering...

8.4CVSS0.00149EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/14 5:39 p.m.4 views

CVE-2025-23356

NVIDIA Isaac Lab contains a vulnerability in SB3 configuration parsing. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering...

8.4CVSS6.9AI score0.00149EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/14 12:0 a.m.13 views

PT-2025-42161

Name of the Vulnerable Software and Affected Versions NVIDIA Isaac Lab affected versions not specified Description NVIDIA Isaac Lab contains a flaw in the SB3 configuration parsing component. Exploitation of this issue could result in code execution, denial of service, escalation of privileges,...

8.4CVSS7AI score0.00149EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/14 12:0 a.m.5 views

NVIDIA Isaac Lab 访问控制错误漏洞

NVIDIA Isaac Lab is a robotics learning framework from NVIDIA. NVIDIA Isaac Lab suffers from an Access Control Error vulnerability that stems from improper SB3 configuration parsing, which could lead to code execution, denial of service, elevation of privilege, information disclosure, or data...

8.4CVSS6.8AI score0.00149EPSS
Exploits0References2
Nvidia
Nvidia
added 2025/10/14 12:0 a.m.6 views

Security Bulletin: NVIDIA Isaac Sim Framework - October 2025

NVIDIA has released an update for the NVIDIA Isaac™ Lab component of NVIDIA Isaac Sim™ framework to address a security issue that might lead to the impacts described in this bulletin. To protect your system, download and install the latest version of Isaac Lab. Go to NVIDIA Product Security...

8.4CVSS6.7AI score0.00149EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-11891

Malware in sbrugna...

7.5CVSS7.6AI score0.01901EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.44 views

EUVD-2025-24605

Malicious code in bioql PyPI...

7.8CVSS6.3AI score0.00568EPSS
Exploits0References3
CNVD
CNVD
added 2025/08/21 12:0 a.m.7 views

NVIDIA Isaac-GR00T Code Injection Vulnerability

NVIDIA Isaac-GR00T is an open base modeling platform from NVIDIA. The NVIDIA Isaac-GR00T suffers from a code injection vulnerability, which originates in a Python component, that can be exploited by an attacker to perform malicious operations and compromise system stability by bypassing security...

7.8CVSS7.5AI score0.00568EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/08/20 12:0 a.m.4 views

NVIDIA Isaac-GR00T secure_server Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of NVIDIA Isaac-GR00T. Authentication is not required to exploit this vulnerability. The specific flaw exists within the secureserver method. The issue results from the lack of authentication prior to...

7.3CVSS6.3AI score0.00568EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/08/20 12:0 a.m.10 views

NVIDIA Isaac-GR00T TorchSerializer Deserialization of Untrusted Data Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of NVIDIA Isaac-GR00T. Authentication is not required to exploit this vulnerability. The specific flaw exists within the TorchSerializer class. The issue results from the lack of proper validation of...

9.8CVSS7.5AI score0.00568EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/08/15 5:30 p.m.30 views

CVE-2025-23296

NVIDIA Isaac-GR00T for all platforms contains a vulnerability in a Python component where an attacker could cause a code injection issue. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering...

7.8CVSS7.6AI score0.00568EPSS
Exploits0References1
Rows per page
Query Builder