nvidia

907 tracked vulnerabilities.

CVE-2026-24151 HIGH
NVIDIA Megatron LM < 0.15.3 - Remote Code Execution via Malicious Input Deserialization
Mar 24, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-24150 HIGH
NVIDIA Megatron LM < 0.15.3 - Remote Code Execution via Checkpoint Loading
Mar 24, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-24141 HIGH
NVIDIA Model Optimizer < 0.41.0 - Deserialization of Untrusted Data in ONNX Quantization Feature
Mar 24, 2026
CVSS 7.8
EPSS 0.00
CVE-2026-24241 MEDIUM
NVIDIA Delegated Licensing Service - Auth Bypass
Feb 24, 2026
CVSS 4.3
EPSS 0.01
CVE-2026-24149 HIGH
NVIDIA Megatron-LM - Code Injection
Feb 03, 2026
CVSS 7.8
EPSS 0.00
CVE-2025-23351 CRITICAL
Nvidia BlueField GA - Out-of-bounds Write
Jul 01, 2026
CVSS 9.0
EPSS 0.00
CVE-2025-23350 CRITICAL
Nvidia BlueField GA - Out-of-bounds Write
Jul 01, 2026
CVSS 9.0
EPSS 0.00
CVE-2025-33221 MEDIUM
Nvidia GeForce - Improper Input Validation
May 26, 2026
CVSS 4.4
EPSS 0.00
CVE-2025-33255 HIGH
NVIDIA TensorRT-LLM - Remote Code Execution via MPI Server Deserialization
May 20, 2026
CVSS 7.5
EPSS 0.01
CVE-2025-33254 HIGH
NVIDIA Triton Inference Server < 26.01 - Denial of Service via Internal State Corruption
Mar 24, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-33248 HIGH
NVIDIA Megatron LM < 0.15.3 - Remote Code Execution via Malicious File Loading
Mar 24, 2026
CVSS 7.8
EPSS 0.00
CVE-2025-33247 HIGH
NVIDIA Megatron LM < 0.15.3 - Remote Code Execution via Quantization Configuration Loading
Mar 24, 2026
CVSS 7.8
EPSS 0.00
CVE-2025-33244 CRITICAL
NVIDIA Apex - Deserialization of Untrusted Data
Mar 24, 2026
CVSS 9.0
EPSS 0.01
CVE-2025-33242 MEDIUM
NVIDIA HGX and DGX B300 <= 1.0 - Denial of Service and Data Tampering via Unsupported Registry Modification
Mar 24, 2026
CVSS 5.9
EPSS 0.00
CVE-2025-33238 HIGH
NVIDIA Triton Inference Server < 26.01 - Denial of Service via Sagemaker HTTP Server
Mar 24, 2026
CVSS 7.5
EPSS 0.00
CVE-2025-33216 MEDIUM
NVIDIA SNAP-4 Container < 4.9.0 and < 4.5.5 - Denial of Service via Crafted Configuration
Mar 24, 2026
CVSS 6.8
EPSS 0.00
CVE-2025-33215 MEDIUM
NVIDIA SNAP-4 Container < 4.9.1 and < 4.5.5 - Denial of Service via VIRTIO-BLK Crafted Messages
Mar 24, 2026
CVSS 6.8
EPSS 0.00
CVE-2025-33181 HIGH
NVIDIA Cumulus Linux/NVOS - Command Injection
Feb 24, 2026
CVSS 7.3
EPSS 0.00
CVE-2025-33180 HIGH
NVIDIA Cumulus Linux/NVOS - Command Injection
Feb 24, 2026
CVSS 8.0
EPSS 0.01
CVE-2025-33179 HIGH
NVIDIA Cumulus Linux/NVOS - Privilege Escalation
Feb 24, 2026
CVSS 8.0
EPSS 0.01
CVE-2025-33253 HIGH
NVIDIA NeMo Framework <=2.6.1 - Malicious File Deserialization Remote Code Execution
Feb 18, 2026
CVSS 7.8
EPSS 0.00
CVE-2025-33252 HIGH
NVIDIA NeMo < 2.6.1 - Remote Code Execution via Untrusted Data Deserialization
Feb 18, 2026
CVSS 7.8
EPSS 0.00
CVE-2025-33251 HIGH
NVIDIA NeMo < 2.6.1 - Remote Code Execution
Feb 18, 2026
CVSS 7.8
EPSS 0.00
CVE-2025-33250 HIGH
NVIDIA NeMo < 2.6.1 - Remote Code Execution
Feb 18, 2026
CVSS 7.8
EPSS 0.00
CVE-2025-33249 HIGH
NVIDIA NeMo Framework - Code Injection
Feb 18, 2026
CVSS 7.8
EPSS 0.00