CVE-2025-33244

Critical CVSS: 9.0

NVIDIA APEX for Linux contains a vulnerability where an unauthorized attacker could cause a deserialization of untrusted data. This vulnerability affects environments that use PyTorch versions earlier than 2.6. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, data tampering, and information disclosure.

Vendor

Product

CWE

CWE-502

Yayın Tarihi

2026-03-24 21:16:24

Güncelleme

2026-03-25 15:41:58

Source Identifier

psirt@nvidia.com

KEV Date Added

Kategoriler

CWE-502 CRITICAL 2026

Referanslar

https://nvd.nist.gov/vuln/detail/CVE-2025-33244 https://nvidia.custhelp.com/app/answers/detail/a_id/5782 https://www.cve.org/CVERecord?id=CVE-2025-33244