CVE-2025-23266
9
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Summary
NVIDIA Container Toolkit for all platforms contains a vulnerability in some hooks used to initialize the container, where an attacker could execute arbitrary code with elevated permissions. A successful exploit of this vulnerability might lead to escalation of privileges, data tampering, information disclosure, and denial of service.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| NVIDIA | Container Toolkit | NVIDIA Container Toolkit All versions up to and including 1.17.7 (CDI mode only for versions prior to 1.17.5) | affected |
| NVIDIA | Container Toolkit | NVIDIA GPU Operator All versions up to and including 25.3.0 (CDI mode only for versions prior to 25.3.0) | affected |
Weaknesses
- CWE-426: CWE-426: Untrusted Search Path
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
- https://kidbomb.github.io/posts/nvidia-container-escape-cve-2025-23266/
- https://news.ycombinator.com/item?id=44818412
- https://www.wiz.io/blog/nvidia-ai-vulnerability-cve-2025-23266-nvidiascape
- https://kidbomb.github.io/posts/nvidia-container-escape-cve-2025-23266-part-2/
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.