Critical Flaw in NVIDIA AI Toolkit Puts Cloud Services at Risk – Upgrade Immediately
techrepublic.com - cloud
A critical flaw in NVIDIA's AI container toolkit (CVE-2025-23266) allows full host takeover, posing serious risks to cloud-based AI services.
Cybersecurity researchers from Wiz have uncovered a severe flaw, now identified as CVE-2025-23266 and nicknamed NVIDIAScape, that could allow attackers to escape container boundaries and gain full root access to the host machine.
The bug affects all versions of the NVIDIA Container Toolkit up to 1.17.7 and has been rated 9.0 (Critical) on the CVSS severity scale. It also impacts NVIDIA GPU Operator versions up to 25.3.0, widely used to manage GPU containers in Kubernetes clusters.
The vulnerability has particularly serious implications for managed AI cloud services, which let customers run their own AI containers on shared GPU infrastructure. In these multi-tenant environments, a single malicious container could compromise data and models belonging to other users on the same machine.
Copyright of this story solely belongs to techrepublic.com - cloud . To see the full text click HERE