CVE-2025-23266

This PoC exploits CVE-2025-23266, a vulnerability in NVIDIA's AI software, by leveraging a constructor function to execute arbitrary code during library loading. It writes system information to a file named '/hacked' as a demonstration of the exploit's effectiveness.

The repository describes a buffer overflow vulnerability (CVE-2025-23266) in FastAPI's `parse_request()` function, allowing remote code execution via crafted HTTP headers. The writeup outlines the exploit flow, mitigation steps, and monitoring recommendations but does not include actual exploit code.

This PoC exploits CVE-2025-23266 in the NVIDIA Container Toolkit by leveraging a shared library (evil.so) to escape container network namespaces and establish a reverse shell. The exploit uses LD_PRELOAD to execute arbitrary commands with elevated privileges.

This PoC exploits CVE-2025-23266 by using a shared library (poc.so) with a constructor payload to copy a flag file from the host to a Docker container's mounted directory. It demonstrates a migration bypass vulnerability likely related to container escape or privilege escalation.

This repository contains a detailed technical analysis of container boundary vulnerabilities, specifically focusing on CVE-2025-23266 in the NVIDIA Container Toolkit. It includes research methodology, findings, and MITRE ATT&CK mappings, but no functional exploit code.