CNNVD-202512-355 Information

CNNVD ID

CNNVD-202512-355

Related CVE

CVE-2025-33208

• CNNVD Published: 2025-12-03

Description (Chinese)

NVIDIA TAO是美国NVIDIA公司的一个AI模型开发框架。 NVIDIA TAO存在代码问题漏洞，该漏洞源于资源加载路径未受控，可能导致权限提升、数据篡改、拒绝服务和信息泄露。

Description (English)

NVIDIA TAO is an AI model development framework for NVIDIA in the United States. NVIDIA TAO has a code gap, which stems from the uncontrollable path of resource loading, which may lead to increased access, data manipulation, denial of services and information disclosure.

Hazard Level

Medium

Vulnerability Type

代码问题

Affected Vendor

英伟达

Published

2025-12-03

Last Modified

2026-02-24

References

https://nvd.nist.gov/vuln/detail/CVE-2025-33208 https://www.cve.org/CVERecord?id=CVE-2025-33208 https://nvidia.custhelp.com/app/answers/detail/a_id/5730 https://access.redhat.com/security/cve/cve-2025-33208

Patch

https://nvidia.custhelp.com/app/answers/detail/a_id/5730