All intelligence
// vulnerability record
cached · NVD via COSMOS syncCVE-2026-24155
HIGHpublished 2026-06-16 17:16 UTC · 9 days ago · modified 2026-06-16 20:38 UTC
7.8
CVSS / 10
// description
NVIDIA NeMo Framework for all platforms contains a code injection vulnerability. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering.
// cvss 3.1 vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
// weaknesses (CWE)
- CWE-94