CNNVD-202511-2727 Information

CNNVD ID

CNNVD-202511-2727

Related CVE

CVE-2025-33205

• CNNVD Published: 2025-11-25

Description (Chinese)

NVIDIA Nemo Framework是美国英伟达（NVIDIA）公司的一款用于构建和部署生成式 AI 模型的框架。 NVIDIA Nemo Framework存在安全漏洞，该漏洞源于预定义变量中存在来自不受信任控制范围的功能包含，可能导致代码执行。

Description (English)

NVIDIA Nemo Framework is a framework for the construction and deployment of a generated AI model by NVIDIA. There is a security loophole in NVIDIA Nemo Framework, which stems from the existence of functional inclusions in predefined variables from untrusted ranges that may lead to code execution.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

英伟达

Published

2025-11-25

Last Modified

2026-02-24

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5729 https://nvd.nist.gov/vuln/detail/CVE-2025-33205 https://www.cve.org/CVERecord?id=CVE-2025-33205 https://access.redhat.com/security/cve/cve-2025-33205

Patch

https://nvidia.custhelp.com/app/answers/detail/a_id/5729