Lucene search
K

559 matches found

NVD
NVD
added 6 days ago8 views

CVE-2026-15044

A flaw was found in the TrustyAI Service Operator. When deploying services like gorch or NemoGuardrails, if a specific security setting is not enabled, these services can expose their communication channels without requiring users to prove their identity. This allows any other program within the...

6.3CVSS0.0017EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 6 days ago6 views

PT-2026-56458

Name of the Vulnerable Software and Affected Versions TrustyAI Service Operator affected versions not specified Description A flaw in the TrustyAI Service Operator occurs when deploying services such as gorch or NemoGuardrails. If a specific security setting is not enabled, these services expose...

6.3CVSS6.1AI score0.0017EPSS
Exploits0References4
OSV
OSV
added 2026/07/02 2:13 p.m.3 views

PYSEC-2026-685 Path Traversal in nemo-toolkit

NVIDIA NeMo before 1.6.0 contains a vulnerability in ASR WebApp, in which ../ Path Traversal may lead to deletion of any directory when admin privileges are available...

4.4CVSS6AI score0.00298EPSS
Exploits0References5
Chainguard
Chainguard
added 2026/06/26 8:22 p.m.7 views

GHSA-45GG-VH54-H5M9 vulnerabilities

Vulnerabilities for packages: backup-restore-operator, telegraf, k3s, coder, seaweedfs-rocksdb, cloud-provider-aws, kubescape-server, gitlab-kas, kubescape-server-fips, loki, prometheus-mongodb-exporter, osv-scanner, kubernetes-dashboard, knative-eventing-fips, opentofu,...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/17 2:16 a.m.11 views

GHSA-WQP7-X3PW-XC5R vulnerabilities

Vulnerabilities for packages: nemo, tritonserver-backend-vllm-cuda-12.9...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/17 2:16 a.m.13 views

GHSA-X746-7M8F-X49C vulnerabilities

Vulnerabilities for packages: nemo, tritonserver-backend-vllm-cuda-12.9...

6.1AI score
Exploits0
Chainguard
Chainguard
added 2026/06/17 2:16 a.m.10 views

CVE-2026-48817 vulnerabilities

Vulnerabilities for packages: nemo, tritonserver-backend-vllm-cuda-12.9...

5.3CVSS6.1AI score0.00213EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/17 2:16 a.m.10 views

CVE-2026-48818 vulnerabilities

Vulnerabilities for packages: nemo, tritonserver-backend-vllm-cuda-12.9...

7.5CVSS6.1AI score0.00368EPSS
Exploits0
NVD
NVD
added 2026/06/16 5:16 p.m.13 views

CVE-2026-24228

NVIDIA NeMo Framework for Linux contains a vulnerability where an attacker may cause deserialization of untrusted data. A successful exploit of this vulnerability may lead to code execution, escalation of privileges, data tampering, and information disclosure...

7.8CVSS0.00161EPSS
Exploits0References3
NVD
NVD
added 2026/06/16 5:16 p.m.17 views

CVE-2026-24155

NVIDIA NeMo Framework for all platforms contains a code injection vulnerability. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering...

7.8CVSS0.00193EPSS
Exploits0References3
CVE
CVE
added 2026/06/16 4:9 p.m.19 views

CVE-2026-24228

NVIDIA NeMo Framework for Linux contains a vulnerability where deserialization of untrusted data may lead to code execution, privilege escalation, data tampering, and information disclosure. The connected NVIDIA security bulletin confirms affected product: NVIDIA NeMo Framework for Linux, with af...

7.8CVSS5.6AI score0.00161EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/06/16 4:9 p.m.19 views

EUVD-2026-37130

NVIDIA NeMo Framework for Linux contains a vulnerability where an attacker may cause deserialization of untrusted data. A successful exploit of this vulnerability may lead to code execution, escalation of privileges, data tampering, and information disclosure...

7.8CVSS5.5AI score0.00161EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/16 4:8 p.m.15 views

EUVD-2026-37129

NVIDIA NeMo Framework for all platforms contains a code injection vulnerability. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering...

7.8CVSS5.3AI score0.00193EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/16 4:8 p.m.33 views

CVE-2026-24155

NVIDIA NeMo Framework for all platforms contains a code injection vulnerability. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering...

7.8CVSS0.00193EPSS
Exploits0References3
CVE
CVE
added 2026/06/16 4:8 p.m.16 views

CVE-2026-24155

CVE-2026-24155 affects NVIDIA NeMo Framework for all platforms, described as a code injection vulnerability (CWE-94) that can lead to code execution, privilege escalation, information disclosure, and data tampering. The NVIDIA security bulletin states that CVE-2026-24155 is addressed by updating ...

7.8CVSS5.4AI score0.00193EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.17 views

PT-2026-49725

Name of the Vulnerable Software and Affected Versions NVIDIA NeMo Framework affected versions not specified Description NVIDIA NeMo Framework contains a code injection flaw. A successful exploit could lead to arbitrary code execution, escalation of privileges, information disclosure, and data...

7.8CVSS5.5AI score0.00193EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.18 views

PT-2026-49726

Name of the Vulnerable Software and Affected Versions NVIDIA NeMo Framework for Linux affected versions not specified Description An issue exists where an attacker may cause deserialization of untrusted data. Deserialization is the process of converting a data stream back into an object. A...

7.8CVSS5.5AI score0.00161EPSS
Exploits0References5
Nvidia
Nvidia
added 2026/06/16 12:0 a.m.11 views

Security Bulletin: NVIDIA NeMo - June 2026

NVIDIA has released a software update for NVIDIA® NeMo Framework. To protect your system, clone or update this software to version 2.7.3 or later from the NVIDIA-NeMo/NeMo GitHub repo. Go to NVIDIA Product Security. Details The following table summarizes the potential vulnerabilities that this...

7.8CVSS5.8AI score0.00193EPSS
Exploits0Affected Software1
Chainguard
Chainguard
added 2026/06/15 2:32 p.m.16 views

CVE-2025-3000 vulnerabilities

Vulnerabilities for packages: py3-torch-cuda-12.4, py3-torch-cuda-13.3, nemo, py3-torch-cuda-13.0, py3-torch-cuda-13.2, py3-torch-cuda-12.8, py3-torch-cuda-12.9, open-webui, py3-torch-cuda-13.1, py3-torch-cuda-12.6...

5.3CVSS6.2AI score0.00183EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/15 2:32 p.m.19 views

GHSA-RRMF-RVHW-RF47 vulnerabilities

Vulnerabilities for packages: py3-torch-cuda-12.4, py3-torch-cuda-13.3, nemo, py3-torch-cuda-13.0, py3-torch-cuda-13.2, py3-torch-cuda-12.8, py3-torch-cuda-12.9, open-webui, py3-torch-cuda-13.1, py3-torch-cuda-12.6...

6.1AI score
Exploits0
Rows per page
Query Builder