CVE-2025-33245
- Source
- https://cve.org/CVERecord?id=CVE-2025-33245
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2025-33245.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2025-33245
- Aliases
- Published
- 2026-02-18T14:16:03.247Z
- Modified
- 2026-04-02T12:52:39.384245Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
NVIDIA NeMo Framework contains a vulnerability where malicious data could cause remote code execution. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.
- References
Affected packages
Git / github.com/nvidia/nemo
Affected versions
1.*
1.4.0
24.*
24.09-alpha.rc0
25.*
25.04-alpha.rc1
25.04-alpha.rc2
25.09-alpha.rc1
25.09-alpha.rc2
Other
nvidia-mlperf
stable
r0.*
r0.8
r2.*
r2.0.0rc1
v0.*
v0.10.0
v0.10.1
v0.11.0
v0.11.1
v0.8.1
v0.8.2
v0.9.0
v1.*
v1.0.0
v1.0.0b1
v1.0.0b2
v1.0.0b3
v1.0.0b4
v1.0.0rc1
v1.0.1
v1.0.2
v1.1.0
v1.10.0
v1.11.0
v1.12.0
v1.13.0
v1.14.0
v1.15.0
v1.16.0
v1.17.0
v1.17.0_pt_23.04
v1.18.0
v1.18.1
v1.19.0
v1.19.0_mm
v1.19.1
v1.2.0
v1.20.0
v1.21.0
v1.22.0
v1.23.0
v1.3.0
v1.4.0
v1.5.0
v1.5.1
v1.6.0
v1.6.1
v1.6.2
v1.6.temp
v1.7.0
v1.7.1
v1.7.2
v1.8.0
v1.8.1
v1.8.2
v1.9.0
v2.*
v2.0.0
v2.0.0.rc0.beta
v2.0.0rc0
v2.1.0
v2.1.0rc0
v2.1.0rc1
v2.1.0rc2
v2.2.0
v2.2.0rc0
v2.2.0rc1
v2.2.0rc2
v2.2.0rc3
v2.2.1
v2.3.0
v2.3.0rc2
v2.3.0rc3
v2.3.0rc4
v2.3.1
v2.3.2
v2.3.3
v2.4.0
v2.4.0rc0
v2.4.0rc1
v2.4.0rc2
v2.4.1
v2.5.0
v2.5.0rc0
v2.5.1
v2.5.2
v2.5.3
v2.6.0
v2.7.0
v2.7.1
v2.7.2