CVE-2025-33236
published 2026-02-18CVE-2025-33236: NVIDIA NeMo Framework contains a vulnerability where malicious data created by an attacker could cause code injection. A successful exploit of this…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
NVIDIA NeMo Framework contains a vulnerability where malicious data created by an attacker could cause code injection. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nvidia | nemo | < 2.6.1 | 2.6.1 |
| nvidia | nemo_framework | — | — |