CVE-2026-24155
HighCVSS 7.8Exploitation Probability (EPSS)
Low risk9th percentile — higher than 9% of all known CVEs
Summary
The NVIDIA NeMo Framework for all platforms contains a code injection vulnerability. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.
Risk Assessment
Exploitation of this vulnerability could threaten the integrity of the system, allowing attackers to execute arbitrary code and access sensitive data.
Recommendation
It is recommended to update the NVIDIA NeMo framework to the latest version and implement appropriate security measures to minimize risk.
Original NVD description (English source)
NVIDIA NeMo Framework for all platforms contains a code injection vulnerability. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.

