CVE-2025-23267
published 2025-07-17CVE-2025-23267: NVIDIA Container Toolkit for all platforms contains a vulnerability in the update-ldcache hook, where an attacker could cause a link following by using a…
high8.5CVSS 3.1
AVNACLPRLUINSCCNILAH
NVIDIA Container Toolkit for all platforms contains a vulnerability in the update-ldcache hook, where an attacker could cause a link following by using a specially crafted container image. A successful exploit of this vulnerability might lead to data tampering and denial of service.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | nvidia_gpu-operator | >= 0 < 25.3.2 | 25.3.2 |
| github.com | nvidia_k8s-device-plugin | >= 0 < 0.17.3 | 0.17.3 |
| github.com | nvidia_mig-parted | >= 0 < 0.12.2 | 0.12.2 |
| github.com | nvidia_nvidia-container-toolkit | >= 0 < 1.17.8 | 1.17.8 |
| nvidia | container_toolkit | — | — |
| nvidia | container_toolkit | — | — |