Nvidia systems could be facing another worrying security flaw
Posted by:
Emma Walker
Nvidia has confirmed a security vulnerability in its Container Toolkit and GPU Operator software, allowing hackers to remotely execute malicious code. This vulnerability, tagged as CVE-2025-23359, poses risks like unauthorized access to the host file system, privilege escalation, and data theft. The issue affects versions up to 1.17.3 for Container Toolkit and 24.9.1 for GPU Operator. The company has released patches in versions 1.17.4 and 24.9.2 to address the security flaw. The bug impacts only Linux systems and does not affect CDI use cases. Additionally, security researchers found it to be a bypass for a critical vulnerability (CVE-2024-0132) that was addressed by Nvidia in September 2024. Users are urged to apply the updates and avoid disabling specific flags to mitigate risks.(Source: The Hacker News)
Recent Posts1
