NVIDIA Container Toolkit for all platforms contains a vulnerability in the update-ldcache hook, where an attacker could cause a link following by using a specially crafted container image. A successful exploit of this vulnerability might lead to data tampering and denial of service.
Metrics
Affected Vendors & Products
References
History
Sat, 19 Jul 2025 00:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Title | nvidia-container-toolkit: NVIDIA Container Toolkit Link Following Vulnerability | |
References |
| |
Metrics |
threat_severity
|
threat_severity
|
Thu, 17 Jul 2025 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Thu, 17 Jul 2025 19:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | NVIDIA Container Toolkit for all platforms contains a vulnerability in the update-ldcache hook, where an attacker could cause a link following by using a specially crafted container image. A successful exploit of this vulnerability might lead to data tampering and denial of service. | |
Weaknesses | CWE-59 | |
References |
| |
Metrics |
cvssV3_1
|

Status: PUBLISHED
Assigner: nvidia
Published: 2025-07-17T19:32:36.958Z
Updated: 2025-07-17T20:09:42.007Z
Reserved: 2025-01-14T01:06:23.291Z
Link: CVE-2025-23267

Updated: 2025-07-17T20:09:34.024Z

Status : Awaiting Analysis
Published: 2025-07-17T20:15:28.843
Modified: 2025-07-17T21:15:50.197
Link: CVE-2025-23267
