PoC Exploit Released for Critical NVIDIA AI Container Toolkit Vulnerability


A critical vulnerability, CVE-2025-23266 (dubbed NVIDIAScape), has been discovered in the NVIDIA Container Toolkit, allowing container escape and root-level host compromise via a simple three-line Dockerfile. The flaw abuses how environment variables like LD_PRELOAD are inherited during container initialization, particularly through OCI hooks, enabling attackers to inject malicious shared libraries into privileged processes. All versions up to v1.17.7 are affected, putting multi-tenant AI cloud environments at high risk, especially where custom container images are used.

Read More


thumb-image

Solutions