VYPR
Unrated severityNVD Advisory· Published Jun 24, 2025· Updated Jun 24, 2025

CVE-2025-23264

CVE-2025-23264

Description

NVIDIA Megatron-LM for all platforms contains a vulnerability in a python component where an attacker may cause a code injection issue by providing a malicious file. A successful exploit of this vulnerability may lead to Code Execution, Escalation of Privileges, Information Disclosure and Data Tampering.

Affected products

2
  • Nvidia/Megatron Lmllm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: All versions prior to 0.12.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.