Security Advisory
CVE-2025-23348
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
NVIDIA Megatron-LM for all platforms contains a vulnerability in the pretrain_gpt script, where malicious data created by an attacker may cause a code injection issue. A successful exploit of this vulnerability may lead to code execution, escalation of privileges, information disclosure, and data tampering.