CNNVD-202601-3194 Information
CNNVD ID
CNNVD-202601-3194
Related CVE
- CNNVD Published: 2026-01-20
Description (Chinese)
NVIDIA Merlin Transformers4Rec是美国英伟达(NVIDIA)公司的一个用于构建序列化和会话式推荐系统的软件。 NVIDIA Merlin Transformers4Rec存在代码注入漏洞,该漏洞源于存在缺陷,可能导致代码注入,进而导致代码执行、权限提升、信息泄露和数据篡改。
Description (English)
NVIDIA Merlin Transformers4Rec is a software for the construction of a serialization and session-style referral system at NVIDIA. NVIDIA Merlin Transformers 4Rec has a code-infusion loophole, which stems from deficiencies that may lead to code-injection, leading to code execution, authority enhancement, information leak and data manipulation.
Hazard Level
Medium
Vulnerability Type
代码注入
Affected Vendor
英伟达
Published
2026-01-20
Last Modified
2026-02-24
References
https://www.cve.org/CVERecord?id=CVE-2025-33233 https://nvd.nist.gov/vuln/detail/CVE-2025-33233 https://nvidia.custhelp.com/app/answers/detail/a_id/5761 https://access.redhat.com/security/cve/cve-2025-33233
Patch
https://github.com/NVIDIA-Merlin/Transformers4Rec/releases
Share on: