Critical Vulnerability in NVIDIA Container Toolkit: "NVIDIAScape"

A severe container escape vulnerability, known as "NVIDIAScape" and tracked as CVE-2025-23266, has been identified in the NVIDIA Container Toolkit, posing a significant risk to global AI infrastructure. With a CVSS score of 9.0, this flaw allows attackers to escape container isolation and gain root-level access to host systems running GPU-accelerated workloads.

The exploit is alarmingly simple; researchers have shown that a three-line Dockerfile can effectively weaponize this vulnerability, bypassing all container security measures. By utilizing the Linux LD_PRELOAD environment variable, attackers can inject malicious code into privileged processes during container initialization, compromising isolated workloads.

Analysts attribute the vulnerability to a critical flaw in the NVIDIA Container Toolkit's handling of Open Container Initiative (OCI) hooks, which inadvertently allows malicious environment variables to affect privileged host processes, leading to potential system compromise.

 
NPAV offers a robust solution to combat cyber fraud. Protect yourself with our top-tier security product, Z Plus Security