VYPR
Unrated severityNVD Advisory· Published Jun 24, 2025· Updated Jun 24, 2025

CVE-2025-23260

CVE-2025-23260

Description

NVIDIA AIStore contains a vulnerability in the AIS Operator where a user may gain elevated k8s cluster access by using the ServiceAccount attached to the ClusterRole. A successful exploit of this vulnerability may lead to information disclosure.

Affected products

2
  • Nvidia/AIStorellm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: All versions prior 2.3.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.