Nvidia Cumulus Linux vulnerabilities
6 known vulnerabilities affecting nvidia/cumulus_linux.
Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH4MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2025-33181HIGHCVSS 8.8fixed in 5.14.0≥ 5.9.0, < 5.9.4+1 more2026-02-24
CVE-2025-33181 [HIGH] CWE-77 CVE-2025-33181: NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the NVUE interface, where a low-pr
NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the NVUE interface, where a low-privileged user could inject a command. A successful exploit of this vulnerability might lead to escalation of privileges.
nvd
CVE-2025-33179HIGHCVSS 8.8fixed in 5.14.0≥ 5.9.0, < 5.9.4+1 more2026-02-24
CVE-2025-33179 [HIGH] CWE-266 CVE-2025-33179: NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the NVUE interface, where a low-pr
NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the NVUE interface, where a low-privileged user could run an unauthorized command. A successful exploit of this vulnerability might lead to escalation of privileges.
nvd
CVE-2025-33180HIGHCVSS 8.8fixed in 5.14.0≥ 5.9.0, < 5.9.4+1 more2026-02-24
CVE-2025-33180 [HIGH] CWE-77 CVE-2025-33180: NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the NVUE interface, where a low-pr
NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the NVUE interface, where a low-privileged user could inject a command. A successful exploit of this vulnerability might lead to escalation of privileges.
nvd
CVE-2025-23261MEDIUMCVSS 5.5vCumulus Linux 5.12, 5.11, 5.10, 5.9 and older2025-09-04
CVE-2025-23261 [MEDIUM] CWE-532 CVE-2025-23261: NVIDIA Cumulus Linux and NVOS products contain a vulnerability, where hashed user passwords are not
NVIDIA Cumulus Linux and NVOS products contain a vulnerability, where hashed user passwords are not properly suppressed in log files, potentially disclosing information to unauthorized users.
cvelistv5nvd
CVE-2023-25525HIGHCVSS 7.5fixed in 5.6.0vAll versions prior to 5.6.02023-09-20
CVE-2023-25525 [HIGH] CWE-284 CVE-2023-25525: NVIDIA Cumulus Linux contains a vulnerability in forwarding where a VxLAN-encapsulated IPv6 packet r
NVIDIA Cumulus Linux contains a vulnerability in forwarding where a VxLAN-encapsulated IPv6 packet received on an SVI interface with DMAC/DIPv6 set to the link-local address of the SVI interface may be incorrectly forwarded. A successful exploit may lead to information disclosure.
cvelistv5nvd
CVE-2023-25526MEDIUMCVSS 6.5fixed in 5.5.0vAll versions prior to 5.5.02023-09-20
CVE-2023-25526 [MEDIUM] CWE-248 CVE-2023-25526: NVIDIA Cumulus Linux contains a vulnerability in neighmgrd and nlmanager where an attacker on an adj
NVIDIA Cumulus Linux contains a vulnerability in neighmgrd and nlmanager where an attacker on an adjacent network may cause an uncaught exception by injecting a crafted packet. A successful exploit may lead to denial of service.
cvelistv5nvd