185 matches found
CVE-2025-33241
CVE-2025-33241 affects NVIDIA NeMo Framework. A remote-code-execution vulnerability can be triggered by loading a maliciously crafted file, with potential impacts including code execution, privilege escalation, information disclosure, and data tampering. NVIDIA’s security bulletin (Feb 2026) prov...
CVE-2025-33236
CVE-2025-33236 is associated with the NVIDIA NeMo Framework. The Red Hat, CIRCL, NVD, OSV, and NVIDIA bulletins corroborate a vulnerability where attacker‑crafted data can cause code injection, potentially leading to code execution, privilege escalation, information disclosure, and data tampering...
CVE-2025-33236
NVIDIA NeMo Framework contains a vulnerability where malicious data created by an attacker could cause code injection. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering...
CVE-2025-33236
NVIDIA NeMo Framework contains a vulnerability where malicious data created by an attacker could cause code injection. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering...
NVIDIA Nemo Framework 代码问题漏洞
NVIDIA Nemo Framework is a framework developed by NVIDIA Corporation in the United States for building and deploying generative AI models. The NVIDIA Nemo Framework has a code vulnerability that allows attackers to execute remote code by loading specially crafted files. This vulnerability may lea...
NVIDIA Nemo Framework 代码问题漏洞
NVIDIA Nemo Framework is a framework developed by NVIDIA Corporation in the United States for building and deploying generative AI models. The NVIDIA NeMo Framework has a code vulnerability that allows attackers to execute remote code in a distributed environment, potentially leading to code...
NVIDIA Nemo Framework 命令注入漏洞
NVIDIA Nemo Framework is a framework developed by NVIDIA Corporation in the United States for building and deploying generative AI models. The NVIDIA NeMo Framework has a command injection vulnerability. This vulnerability arises from malicious inputs created by attackers in the voice preprocessi...
NVIDIA Nemo Framework 代码注入漏洞
NVIDIA Nemo Framework is a framework developed by NVIDIA Corporation in the United States for building and deploying generative AI models. The NVIDIA Nemo Framework has a code injection vulnerability. This vulnerability allows attackers to potentially execute remote code, leading to code executio...
NVIDIA Nemo Framework 代码注入漏洞
NVIDIA Nemo Framework is a framework developed by NVIDIA Corporation in the United States for building and deploying generative AI models. The NVIDIA NeMo Framework has a code injection vulnerability. This vulnerability allows attackers to potentially execute remote code, leading to code executio...
NVIDIA Nemo Framework 代码问题漏洞
NVIDIA Nemo Framework is a framework developed by NVIDIA Corporation in the United States for building and deploying generative AI models. The NVIDIA NeMo Framework has code-related vulnerabilities. These vulnerabilities could allow attackers to execute remote code, leading to code execution,...
PT-2026-20402
Name of the Vulnerable Software and Affected Versions NVIDIA NeMo Framework affected versions not specified Description The NVIDIA NeMo Framework has a flaw that could allow a remote attacker to execute code. This is achieved by loading a specially designed file. Exploitation could result in code...
PT-2026-20399
Name of the Vulnerable Software and Affected Versions NVIDIA NeMo Framework affected versions not specified Description The NVIDIA NeMo Framework has a flaw that allows an attacker to create malicious data that could lead to code injection. Exploitation of this issue may result in code execution,...
PT-2026-20409
NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution. A successful exploit of this vulnerability might lead to code execution, denial of service, information disclosure, and data tampering...
PT-2026-20410
NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution by convincing a user to load a maliciously crafted file. A successful exploit of this vulnerability might lead to code execution, denial of service, information disclosure, and data tampering...
PT-2026-20403
Name of the Vulnerable Software and Affected Versions NVIDIA NeMo Framework affected versions not specified Description The NVIDIA NeMo Framework has a flaw that could allow a remote attacker to execute code in distributed environments. Exploitation of this issue may result in code execution,...
Security Bulletin: NVIDIA NeMo Framework - February 2026
NVIDIA has released a software update for NVIDIA® NeMo Framework. To protect your system, clone or update this software to version 2.6.1 or later from NVIDIA/NeMo Framework on NVIDIA GitHub or pypi. Go to NVIDIA Product Security. Details The following table summarizes the potential vulnerabilitie...
CVE-2025-23250
NVIDIA NeMo Framework contains a vulnerability where an attacker could cause an improper limitation of a pathname to a restricted directory by an arbitrary file write. A successful exploit of this vulnerability might lead to code execution and data tampering...
CVE-2025-23314
NVIDIA NeMo Framework for all platforms contains a vulnerability in the NLP component, where malicious data created by an attacker could cause a code injection issue. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and dat...
CVE-2025-23251
NVIDIA NeMo Framework contains a vulnerability where a user could cause an improper control of generation of code by remote code execution. A successful exploit of this vulnerability might lead to code execution and data tampering...
NVIDIA Nemo Framework Code Issue Vulnerability (CNVD-2026-1237200)
NVIDIA Nemo Framework is a framework for building and deploying generative AI models from NVIDIA. The NVIDIA NeMo Framework contains a security vulnerability that can be exploited by attackers to cause code execution, elevation of privilege, denial of service, and data tampering...