A critical vulnerability, CVE-2025-23266 (dubbed NVIDIAScape), has been discovered in the NVIDIA Container Toolkit, allowing container escape and root-level host compromise via a simple three-line Dockerfile. The flaw abuses how environment variables like LD_PRELOAD are inherited during container initialization, particularly through OCI hooks, enabling attackers to inject malicious shared libraries into privileged processes. All versions up to v1.17.7 are affected, putting multi-tenant AI cloud environments at high risk, especially where custom container images are used.