Tag: nvidia
-
NVIDIA Isaac Lab Flaw Enables Remote Code Execution
NVIDIA has disclosed a critical security vulnerability in Isaac Lab, a component of the NVIDIA Isaac Sim framework, that could allow attackers to execute arbitrary code remotely. The company released security patches in December 2025 to address the deserialization flaw tracked as CVE-2025-32210. CVE ID Description CVSS Score Severity CWE CVE-2025-32210 Deserialization vulnerability in NVIDIA Isaac…
-
NVIDIA Merlin Vulnerabilities Allows Malicious Code Execution and DoS Attacks
NVIDIA has released urgent security patches for its Merlin machine learning framework after discovering two high-severity deserialization vulnerabilities that could enable attackers to execute malicious code, trigger denial-of-service attacks, and compromise sensitive data on Linux systems. The security bulletin, published on December 9, 2025, identifies critical flaws in the NVTabular and Transformers4Rec components of NVIDIA…
-
Smuggling Ring Charged as Trump Okays Nvidia Sales to China
Operation Gatekeeper Targets Illegal Export of Nvidia Processors to China. An alleged smuggling ring illegally sold at least $160 million in advanced Nvidia artificial intelligence chips to China, U.S. federal prosecutors said Monday while announcing charges against found individuals. U.S. President Donald Trump also said that day he approved H200 chip sales to China. First…
-
Amazon’s Trainium3 is the latest to conform to Nvidia’s mold
Tags: nvidiaFrom Amazon to AMD, everything looks like an NVL72 now First seen on theregister.com Jump to article: www.theregister.com/2025/12/07/trainium3_all_nvidia_nvl72_mold/
-
NVIDIA and Lakera AI Propose Unified Framework for Agent Safety
NVIDIA and Lakera AI have introduced a groundbreaking unified security and safety framework designed to address the emerging challenges posed by autonomous AI agents in enterprise environments. This collaborative effort represents a significant step forward in making agentic systems AI systems capable of independent planning, tool use, and multi-step task execution safer and more secure…
-
NVIDIA and Lakera AI Propose Unified Framework for Agent Safety
NVIDIA and Lakera AI have introduced a groundbreaking unified security and safety framework designed to address the emerging challenges posed by autonomous AI agents in enterprise environments. This collaborative effort represents a significant step forward in making agentic systems AI systems capable of independent planning, tool use, and multi-step task execution safer and more secure…
-
NVIDIA research shows how agentic AI fails under attack
Enterprises are rushing to deploy agentic systems that plan, use tools, and make decisions with less human guidance than earlier AI models. This new class of systems also … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/12/08/nvidia-agentic-ai-security-framework/
-
AI’s Closed Loops Are Tightening – Can Startups Thrive?
Closed AI Loops Are Concentrating Power – and Creating Room for Startups. Microsoft, Nvidia and Anthropic just formed the latest closed-loop artificial intelligence partnership, tying cloud, hardware and models into a single circuit. While it signals consolidation at the top, founders say it’s also creating a surprising tailwind for domain-focused AI startups. First seen on…
-
Fehler in der Authentifizierung – ZDI macht zwei Zero Days in Nvidias AIStore publik
First seen on security-insider.de Jump to article: www.security-insider.de/sicherheitsluecken-nvidia-aistore-update-empfohlen-a-56619fb01180b2aaa5fd69327d8a79d5/
-
HPE pumps AI cloud lineup with extra Nvidia capabilities
Blackwell GPUs, Juniper integration, and a planned France lab aim to speed enterprise rollouts First seen on theregister.com Jump to article: www.theregister.com/2025/12/01/hpe_ai_cloud_nvidia/
-
HPE pumps AI cloud lineup with extra Nvidia capabilities
Blackwell GPUs, Juniper integration, and a planned France lab aim to speed enterprise rollouts First seen on theregister.com Jump to article: www.theregister.com/2025/12/01/hpe_ai_cloud_nvidia/
-
NVIDIA DGX Spark Flaws Allow Attackers to Run Malicious Code and Launch DoS Attacks
NVIDIA has released security updates to address fourteen critical vulnerabilities in its DGX Spark system. These flaws could allow attackers to execute malicious code, steal sensitive information, and launch denial-of-service attacks that crash the system. The vulnerabilities affect all versions of NVIDIA DGX OS before the latest OTA0 update. CVE ID Severity CVSS Score Potential…
-
NVIDIA DGX Spark Flaws Allow Attackers to Run Malicious Code and Launch DoS Attacks
NVIDIA has released security updates to address fourteen critical vulnerabilities in its DGX Spark system. These flaws could allow attackers to execute malicious code, steal sensitive information, and launch denial-of-service attacks that crash the system. The vulnerabilities affect all versions of NVIDIA DGX OS before the latest OTA0 update. CVE ID Severity CVSS Score Potential…
-
NVIDIA Isaac-GROOT Flaws Let Attackers Inject Malicious Code
NVIDIA has released security updates addressing two critical code injection vulnerabilities in its Isaac-GR00T robotics software platform. The flaws could allow attackers with local system access to execute arbitrary code, escalate privileges, and tamper with sensitive data, potentially compromising robotic systems and their underlying infrastructure. The vulnerabilities, tracked as CVE-2025-33183 and CVE-2025-33184, affect all versions…
-
Nvidia confirms October Windows updates cause gaming issues
Nvidia has confirmed that last month’s security updates are causing gaming performance issues on Windows 11 24H2 and Windows 11 25H2 systems. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/technology/nvidia-fixes-gaming-issues-caused-by-october-windows-update/
-
Four charged over alleged plot to smuggle Nvidia AI chips into China
Prosecutors say front companies, falsified paperwork, and overseas drop points used to dodge US export rules First seen on theregister.com Jump to article: www.theregister.com/2025/11/21/nvidia_china_smuggling_charges/
-
Four charged over alleged plot to smuggle Nvidia AI chips into China
Prosecutors say front companies, falsified paperwork, and overseas drop points used to dodge US export rules First seen on theregister.com Jump to article: www.theregister.com/2025/11/21/nvidia_china_smuggling_charges/
-
4 People Indicted in Alleged Conspiracy to Smuggle Supercomputers and Nvidia Chips to China
A federal prosecutor alleged that one defendant boasted that his father “had engaged in similar business for the Chinese Communist Party.” First seen on wired.com Jump to article: www.wired.com/story/smuggling-supercomputers-china-nvidia-indictment/
-
Four Indicted In Alleged Conspiracy To Smuggle Supercomputers and Nvidia Chips to China
A federal prosecutor alleged one defendant boasted that his father “had engaged in similar business for the Chinese Communist Party.” First seen on wired.com Jump to article: www.wired.com/story/smuggling-supercomputers-china-nvidia-indictment/
-
ShadowRay 2.0 Exploits Unpatched Ray Flaw to Build Self-Spreading GPU Cryptomining Botnet
Oligo Security has warned of ongoing attacks exploiting a two-year-old security flaw in the Ray open-source artificial intelligence (AI) framework to turn infected clusters with NVIDIA GPUs into a self-replicating cryptocurrency mining botnet.The activity, codenamed ShadowRay 2.0, is an evolution of a prior wave that was observed between September 2023 and March 2024. The attack,…
-
Nvidia DGX Spark Software Update – Mehr Leistung und viele Verbesserungen für Peripherie
Nvidia hat ein erstes Software-Update für DGX Spark und alle auf der GB10-Plattform basierenden Partner-Designs veröffentlicht. First seen on computerbase.de Jump to article: www.computerbase.de/news/pc-systeme/nvidia-dgx-spark-software-update-mehr-leistung-und-viele-verbesserungen-fuer-peripherie.95137
-
Nvidia DGX Spark Software Update – Mehr Leistung und viele Verbesserungen für Peripherie
Nvidia hat ein erstes Software-Update für DGX Spark und alle auf der GB10-Plattform basierenden Partner-Designs veröffentlicht. First seen on computerbase.de Jump to article: www.computerbase.de/news/pc-systeme/nvidia-dgx-spark-software-update-mehr-leistung-und-viele-verbesserungen-fuer-peripherie.95137
-
Linus Torvalds is OK with vibe coding as long as it’s not used for anything that matters
Linux inventor also discusses Rust in the kernel, Nvidia’s proprietary code, and the problem of AI crawlers First seen on theregister.com Jump to article: www.theregister.com/2025/11/18/linus_torvalds_vibe_coding/
-
ShadowMQ: Critical AI Flaws Impact Meta, NVIDIA, and More
ShadowMQ exposes how insecure code reuse can quietly spread dangerous vulnerabilities across the AI ecosystem. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/artificial-intelligence/shadowmq-critical-ai-flaws-impact-meta-nvidia-and-more/
-
Critical RCE Flaws in AI Inference Engines Expose Meta, Nvidia, and Microsoft Frameworks
Tags: ai, cve, cyber, flaw, framework, infrastructure, microsoft, nvidia, open-source, rce, remote-code-execution, technology, vulnerabilitySecurity researchers at Oligo Security have uncovered a series of critical Remote Code Execution vulnerabilities affecting widely deployed AI inference servers from major technology companies. The flaws affect frameworks developed by Meta, NVIDIA, Microsoft, and open-source projects such as vLLM, SGLang, and Modular, potentially exposing enterprise AI infrastructure to serious security risks. CVE ID Affected…
-
Beteiligung: Nvidia will mit Nokia US-Führung bei 6G durchsetzen
Tags: nvidiaBei der Beteiligung von Nvidia an Nokia geht es um mehr als bisher gedacht. Nvidia-Chef Huang will in alle Nokia-Basisstationen. First seen on golem.de Jump to article: www.golem.de/news/beteiligung-nvidia-will-mit-nokia-us-fuehrung-bei-6g-durchsetzen-2511-202269.html
-
Researchers Find Serious AI Bugs Exposing Meta, Nvidia, and Microsoft Inference Frameworks
Cybersecurity researchers have uncovered critical remote code execution vulnerabilities impacting major artificial intelligence (AI) inference engines, including those from Meta, Nvidia, Microsoft, and open-source PyTorch projects such as vLLM and SGLang.”These vulnerabilities all traced back to the same root cause: the overlooked unsafe use of ZeroMQ (ZMQ) and Python’s pickle deserialization,” First seen on thehackernews.com…
-
NVIDIA NeMo Flaw Enables Code Injection and Privilege Escalation Attacks
NVIDIA has released critical security patches addressing two high-severity vulnerabilities in its NeMo Framework that could allow attackers to execute arbitrary code and escalate privileges on affected systems. The vulnerabilities affect all versions of the framework before 2.5.0, and users should update to 2.5.0 immediately. CVE ID Description CVSS Score Severity CVE-2025-23361 Improper control of…
-
Copy-paste vulnerability hits AI inference frameworks at Meta, Nvidia, and Microsoft
Tags: ai, authentication, cloud, data, data-breach, exploit, framework, google, infrastructure, Internet, linkedin, LLM, microsoft, nvidia, oracle, risk, vulnerabilityWhy this matters for AI infrastructure: The vulnerable inference servers form the backbone of many enterprise-grade AI stacks, processing sensitive prompts, model weights, and customer data. Oligo reported identifying thousands of exposed ZeroMQ sockets on the public internet, some tied to these inference clusters.If exploited, an attacker could execute arbitrary code on GPU clusters, escalate…
-
Copy-paste vulnerability hits AI inference frameworks at Meta, Nvidia, and Microsoft
Tags: ai, authentication, cloud, data, data-breach, exploit, framework, google, infrastructure, Internet, linkedin, LLM, microsoft, nvidia, oracle, risk, vulnerabilityWhy this matters for AI infrastructure: The vulnerable inference servers form the backbone of many enterprise-grade AI stacks, processing sensitive prompts, model weights, and customer data. Oligo reported identifying thousands of exposed ZeroMQ sockets on the public internet, some tied to these inference clusters.If exploited, an attacker could execute arbitrary code on GPU clusters, escalate…