This page lists publicly disclosed CVE vulnerabilities affecting nvidia nemo (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2026-24228 | NVIDIA NeMo Framework for Linux contains a vulnerability where an attacker may cause deserialization of untrusted data. A successful exploit of this vulnerability may lead to code execution, escalation of privileges, data tampering, and information disclosure. | [email protected] | 7.8 | 0.16% | 2026-06-16 | 2026-06-16 |
| CVE-2026-24155 | NVIDIA NeMo Framework for all platforms contains a code injection vulnerability. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering. | [email protected] | 7.8 | 0.19% | 2026-06-16 | 2026-06-16 |
| CVE-2026-24159 | NVIDIA NeMo Framework contains a vulnerability where an attacker may cause remote code execution. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure and data tampering. | [email protected] | 7.8 | 0.64% | 2026-03-24 | 2026-03-31 |
| CVE-2026-24157 | NVIDIA NeMo Framework contains a vulnerability in checkpoint loading where an attacker could cause remote code execution. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure and data tampering. | [email protected] | 7.8 | 0.64% | 2026-03-24 | 2026-03-31 |
| CVE-2025-33253 | NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution by convincing a user to load a maliciously crafted file. A successful exploit of this vulnerability might lead to code execution, denial of service, information disclosure, and data tampering. | [email protected] | 7.8 | 0.19% | 2026-02-18 | 2026-02-20 |
| CVE-2025-33252 | NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution. A successful exploit of this vulnerability might lead to code execution, denial of service, information disclosure, and data tampering. | [email protected] | 7.8 | 0.17% | 2026-02-18 | 2026-02-20 |
| CVE-2025-33251 | NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution. A successful exploit of this vulnerability might lead to code execution, denial of service, information disclosure, and data tampering. | [email protected] | 7.8 | 0.22% | 2026-02-18 | 2026-02-20 |
| CVE-2025-33250 | NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution. A successful exploit of this vulnerability might lead to code execution, denial of service, information disclosure, and data tampering. | [email protected] | 7.8 | 0.22% | 2026-02-18 | 2026-02-20 |
| CVE-2025-33249 | NVIDIA NeMo Framework for all platforms contains a vulnerability in a voice-preprocessing script, where malicious input created by an attacker could cause a code injection. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering. | [email protected] | 7.8 | 0.17% | 2026-02-18 | 2026-02-20 |
| CVE-2025-33246 | NVIDIA NeMo Framework for all platforms contains a vulnerability in the ASR Evaluator utility, where a user could cause a command injection by supplying crafted input to a configuration parameter. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, or information disclosure. | [email protected] | 7.8 | 0.77% | 2026-02-18 | 2026-02-20 |
| CVE-2025-33245 | NVIDIA NeMo Framework contains a vulnerability where malicious data could cause remote code execution. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering. | [email protected] | 8.0 | 0.52% | 2026-02-18 | 2026-02-20 |
| CVE-2025-33243 | NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution in distributed environments. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering. | [email protected] | 7.8 | 0.19% | 2026-02-18 | 2026-02-20 |
| CVE-2025-33241 | NVIDIA NeMo Framework contains a vulnerability where an attacker could cause remote code execution by loading a maliciously crafted file. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering. | [email protected] | 7.8 | 0.17% | 2026-02-18 | 2026-02-20 |
| CVE-2025-33236 | NVIDIA NeMo Framework contains a vulnerability where malicious data created by an attacker could cause code injection. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering. | [email protected] | 7.8 | 0.18% | 2026-02-18 | 2026-02-20 |
| CVE-2025-33226 | NVIDIA NeMo Framework for all platforms contains a vulnerability where malicious data created by an attacker may cause a code injection. A successful exploit of this vulnerability may lead to code execution, escalation of privileges, information disclosure, and data tampering. | [email protected] | 7.8 | 0.18% | 2025-12-16 | 2026-01-09 |
| CVE-2025-33212 | NVIDIA NeMo Framework contains a vulnerability in model loading that could allow an attacker to exploit improper control mechanisms if a user loads a maliciously crafted file. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, denial of service, and data tampering. | [email protected] | 7.3 | 0.15% | 2025-12-16 | 2026-01-09 |
| CVE-2025-33205 | NVIDIA NeMo framework contains a vulnerability in a predefined variable, where an attacker could cause inclusion of functionality from an untrusted control sphere by use of a predefined variable. A successful exploit of this vulnerability may lead to code execution. | [email protected] | 7.3 | 0.12% | 2025-11-25 | 2025-12-02 |
| CVE-2025-33204 | NVIDIA NeMo Framework for all platforms contains a vulnerability in the NLP and LLM components, where malicious data created by an attacker could cause code injection. A successful exploit of this vulnerability may lead to code execution, escalation of privileges, information disclosure, and data tampering. | [email protected] | 7.8 | 0.17% | 2025-11-25 | 2025-12-02 |
| CVE-2025-33178 | NVIDIA NeMo Framework for all platforms contains a vulnerability in the bert services component where malicious data created by an attacker may cause a code injection. A successful exploit of this vulnerability may lead to Code execution, Escalation of privileges, Information disclosure, and Data tampering. | [email protected] | 7.8 | 0.27% | 2025-11-11 | 2025-11-19 |
| CVE-2025-23361 | NVIDIA NeMo Framework for all platforms contains a vulnerability in a script, where malicious input created by an attacker may cause improper control of code generation. A successful exploit of this vulnerability may lead to code execution, escalation of privileges, information disclosure, and data tampering. | [email protected] | 7.8 | 0.25% | 2025-11-11 | 2025-11-19 |