CNNVD-202511-2033 Information

CNNVD ID

CNNVD-202511-2033

Related CVE

CVE-2025-33184

• CNNVD Published: 2025-11-18

Description (Chinese)

NVIDIA Isaac-GR00T是美国英伟达（NVIDIA）公司的一个开放式基础模型平台。 NVIDIA Isaac-GR00T存在代码注入漏洞，该漏洞源于Python组件存在代码注入问题，可能导致代码执行、权限提升、信息泄露和数据篡改。

Description (English)

NVIDIA Isaac-GR00T is an open base model platform for the United States company NVIDIA. NVIDIA Isaac-GR00T has a code-injection loophole, which stems from a code-injection problem with the Python component, which may lead to code execution, power enhancement, information leakage and data manipulation.

Hazard Level

Medium

Vulnerability Type

代码注入

Affected Vendor

英伟达

Published

2025-11-18

Last Modified

2026-02-24

References

https://nvd.nist.gov/vuln/detail/CVE-2025-33184 https://nvidia.custhelp.com/app/answers/detail/a_id/5725 https://www.cve.org/CVERecord?id=CVE-2025-33184 https://access.redhat.com/security/cve/cve-2025-33184

Patch

https://nvidia.custhelp.com/app/answers/detail/a_id/5725