CVE-2022-42270

NVIDIA distributions of Linux contain a vulnerability in nvdlaemutasksubmit, where unvalidated input may allow a local attacker to cause stack-based buffer overflow in kernel code, which may lead to escalation of privileges, compromised integrity and confidentiality, and denial of service...

Amazon Linux 2023 : cuda-nvrtc-12, cuda-nvrtc-devel-12 (ALAS2023NVIDIA-2025-216)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2025-216 advisory. NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A successful exploit of this vulnerability might lead to...

Medium: cuda-toolkit

Issue Overview: NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A successful exploit of this vulnerability might lead to information disclosure or denial of service. CVE-2025-23272 Affected Packages:...

EUVD-2021-21061

Malware in sbrugna...

EUVD-2020-27137

Malware in sbrugna...

EUVD-2020-27126

Malware in sbrugna...

EUVD-2019-15263

Malware in sbrugna...

EUVD-2017-15319

Malware in sbrugna...

EUVD-2021-21042

Malware in sbrugna...

EUVD-2023-29473

Malicious code in bioql PyPI...

EUVD-2025-12266

Malicious code in bioql PyPI...

SUSE CVE-2025-23279

NVIDIA .run Installer for Linux and Solaris contains a vulnerability where an attacker could use a race condition to escalate privileges. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, denial of service, or data tampering...

Amazon Linux 2023 : libnvidia-cfg, libnvidia-ml, nvidia-driver-cuda (ALAS2023NVIDIA-2025-144)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023NVIDIA-2025-144 advisory. NVIDIA Display Driver for Linux and Windows contains a vulnerability in the kernel mode driver, where an attacker could access memory outside bounds permitted under normal use cases. A...

CVE-2025-23279

NVIDIA .run Installer for Linux and Solaris contains a vulnerability where an attacker could use a race condition to escalate privileges. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, denial of service, or data tampering...

CVE-2025-23279

Summary (CVE-2025-23279) NVIDIA .run Installer for Linux and Solaris contains a race condition that could allow privilege escalation. The issue is local-execution (AV:L, AC:H, PR:L) with high impact, potentially enabling code execution, privilege escalation, information disclosure, DoS, or data t...

PT-2025-31755 · Nvidia · Nvidia Vgpu

Name of the Vulnerable Software and Affected Versions: NVIDIA vGPU software affected versions not specified Description: NVIDIA vGPU software contains an issue in the Virtual GPU Manager that allows a guest to obtain global GPU metrics potentially influenced by other virtual machines. A successfu...

NVIDIAScape - Critical NVIDIA AI Vulnerability: A Three-Line Container Escape in NVIDIA Container Toolkit (CVE-2025-23266)

New critical vulnerability with 9.0 CVSS presents systemic risk to the AI ecosystem, carries widespread implications for AI infrastructure...

Amazon Linux 2023 : nvidia (ALAS2023NVIDIA-2025-073)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023NVIDIA-2025-073 advisory. NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a failure to check the length of a buffer could allow a user to cause the tool to crash or execute...

Medium: cuda-libraries-12-9

Issue Overview: NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a failure to check the length of a buffer could allow a user to cause the tool to crash or execute arbitrary code by passing in a malformed ELF file. A successful exploit of this...

CVE-2023-31035

NVIDIA DGX A100 SBIOS contains a vulnerability where an attacker may cause an SMI callout vulnerability that could be used to execute arbitrary code at the SMM level. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, and informatio...