Critical severity9.0GHSA Advisory· Published Jul 17, 2025· Updated Apr 15, 2026
CVE-2025-23266
CVE-2025-23266
Description
NVIDIA Container Toolkit for all platforms contains a vulnerability in some hooks used to initialize the container, where an attacker could execute arbitrary code with elevated permissions. A successful exploit of this vulnerability might lead to escalation of privileges, data tampering, information disclosure, and denial of service.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
github.com/NVIDIA/nvidia-container-toolkitGo | < 1.17.8 | 1.17.8 |
github.com/NVIDIA/k8s-device-pluginGo | < 0.17.3 | 0.17.3 |
github.com/NVIDIA/gpu-operatorGo | < 25.3.2 | 25.3.2 |
github.com/NVIDIA/mig-partedGo | < 0.12.2 | 0.12.2 |
Affected products
53- Range: < 0.12.2
- osv-coords52 versionspkg:apk/chainguard/nvidia-container-toolkitpkg:apk/chainguard/nvidia-container-toolkit-containerdpkg:apk/chainguard/nvidia-container-toolkit-criopkg:apk/chainguard/nvidia-container-toolkit-dockerpkg:apk/chainguard/nvidia-container-toolkit-nvidia-cdi-hookpkg:apk/chainguard/nvidia-container-toolkit-nvidia-container-runtimepkg:apk/chainguard/nvidia-container-toolkit-nvidia-container-runtime-cdipkg:apk/chainguard/nvidia-container-toolkit-nvidia-container-runtime-hookpkg:apk/chainguard/nvidia-container-toolkit-nvidia-container-runtime-legacypkg:apk/chainguard/nvidia-container-toolkit-nvidia-ctkpkg:apk/chainguard/nvidia-container-toolkit-nvidia-ctk-installerpkg:apk/chainguard/nvidia-container-toolkit-nvidia-toolkitpkg:apk/chainguard/nvidia-container-toolkit-operatorpkg:apk/chainguard/nvidia-container-toolkit-toolkitpkg:apk/wolfi/nvidia-container-toolkitpkg:apk/wolfi/nvidia-container-toolkit-containerdpkg:apk/wolfi/nvidia-container-toolkit-criopkg:apk/wolfi/nvidia-container-toolkit-dockerpkg:apk/wolfi/nvidia-container-toolkit-nvidia-cdi-hookpkg:apk/wolfi/nvidia-container-toolkit-nvidia-container-runtimepkg:apk/wolfi/nvidia-container-toolkit-nvidia-container-runtime-cdipkg:apk/wolfi/nvidia-container-toolkit-nvidia-container-runtime-hookpkg:apk/wolfi/nvidia-container-toolkit-nvidia-container-runtime-legacypkg:apk/wolfi/nvidia-container-toolkit-nvidia-ctkpkg:apk/wolfi/nvidia-container-toolkit-nvidia-ctk-installerpkg:apk/wolfi/nvidia-container-toolkit-nvidia-toolkitpkg:apk/wolfi/nvidia-container-toolkit-operatorpkg:apk/wolfi/nvidia-container-toolkit-toolkitpkg:golang/github.com/nvidia/gpu-operatorpkg:golang/github.com/nvidia/k8s-device-pluginpkg:golang/github.com/nvidia/mig-partedpkg:golang/github.com/nvidia/nvidia-container-toolkitpkg:rpm/almalinux/toolboxpkg:rpm/almalinux/toolbox-testspkg:rpm/opensuse/govulncheck-vulndb&distro=openSUSE%20Leap%2015.6pkg:rpm/opensuse/govulncheck-vulndb&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/nvidia-container-toolkit&distro=openSUSE%20Leap%2015.6pkg:rpm/suse/govulncheck-vulndb&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Enterprise%20Storage%207.1pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP3-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-ESPOSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP4-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-ESPOSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015%20SP5-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP6pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Containers%2015%20SP7pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP3-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP4-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP5-LTSSpkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP3pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP4pkg:rpm/suse/nvidia-container-toolkit&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015%20SP5
< 1.17.8-r0+ 51 more
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 1.17.8-r0
- (no CPE)range: < 25.3.2
- (no CPE)range: < 0.17.3
- (no CPE)range: < 0.12.2
- (no CPE)range: < 1.17.8
- (no CPE)range: < 0.2-1.el9_6
- (no CPE)range: < 0.2-1.el9_6
- (no CPE)range: < 0.0.20251023T162509-150000.1.110.1
- (no CPE)range: < 0.0.20251023T162509-1.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 0.0.20251023T162509-150000.1.110.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
- (no CPE)range: < 1.18.0-150200.5.17.1
Patches
Vulnerability mechanics
References
10- github.com/advisories/GHSA-vmg3-7v43-9g23ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2025-23266ghsaADVISORY
- kidbomb.github.io/posts/nvidia-container-escape-cve-2025-23266ghsaWEB
- kidbomb.github.io/posts/nvidia-container-escape-cve-2025-23266-part-2ghsaWEB
- news.ycombinator.com/itemnvdWEB
- nvidia.custhelp.com/app/answers/detail/a_id/5659nvdWEB
- pkg.go.dev/vuln/GO-2025-3992ghsaWEB
- www.wiz.io/blog/nvidia-ai-vulnerability-cve-2025-23266-nvidiascapenvdWEB
- kidbomb.github.io/posts/nvidia-container-escape-cve-2025-23266-part-2/nvd
- kidbomb.github.io/posts/nvidia-container-escape-cve-2025-23266/nvd
News mentions
1- GenAI Is Both Hunter and Hunted at Pwn2Own Berlin 2026Trend Micro Research · Jun 10, 2026