CVE Catalog

CVE-2026-24155

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.19%

9th percentile — higher than 9% of all known CVEs

Summary

The NVIDIA NeMo Framework for all platforms contains a code injection vulnerability. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.

Risk Assessment

Exploitation of this vulnerability could threaten the integrity of the system, allowing attackers to execute arbitrary code and access sensitive data.

Recommendation

It is recommended to update the NVIDIA NeMo framework to the latest version and implement appropriate security measures to minimize risk.

Original NVD description (English source)

NVIDIA NeMo Framework for all platforms contains a code injection vulnerability. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS