NVIDIA NeMo Framework 反序列化漏洞 (CVE-2025-33252)

- **CVE ID**: CVE-2025-33252 - **CNA**: NVIDIA Corporation - **Published Date**: 2026-02-18 - **Updated Date**: 2026-02-18 - **Description**: NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution. A successful exploit of this vulnerability might lead to code execution, denial of service, information disclosure, and data tampering. - **CWE**: CWE-502: Deserialization of Untrusted Data - **CVSS Score**: 7.8 (High) - **CVSS Vector String**: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H - **Product**: NVIDIA NeMo Framework - **Affected Versions**: All versions prior to 2.6.1 - **References**: - [NVD Detail Page](https://nvd.nist.gov/vuln/detail/CVE-2025-33252) - [CVE Record](https://www.cve.org/CVERecord?id=CVE-2025-33252) - [NVIDIA Support](https://nvidia.custhelp.com/app/answers/detail/a_id/5762)

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

NVIDIA NeMo Framework 反序列化漏洞 (CVE-2025-33252)

目标达成感谢每一位支持者 — 我们达成了 100% 目标！