CVE-2025-33212
published 2025-12-16CVE-2025-33212: NVIDIA NeMo Framework contains a vulnerability in model loading that could allow an attacker to exploit improper control mechanisms if a user loads a…
high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
NVIDIA NeMo Framework contains a vulnerability in model loading that could allow an attacker to exploit improper control mechanisms if a user loads a maliciously crafted file. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, denial of service, and data tampering.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nvidia | nemo | < 2.5.3 | 2.5.3 |
| nvidia | nemo_framework | — | — |