CVE-2025-23267
Published: 17 July 2025
Summary
CVE-2025-23267 is a high-severity Link Following (CWE-59) vulnerability in Custhelp (inferred from references). Its CVSS base score is 8.5 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Escape to Host (T1611); ranked in the top 41.5% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
The strongest mitigations our analysis identified are NIST 800-53 SI-2 (Flaw Remediation) and SI-10 (Information Input Validation).
Deeper analysis
CVE-2025-23267 is a vulnerability in the NVIDIA Container Toolkit across all platforms, specifically within the update-ldcache hook. An attacker can exploit it by using a specially crafted container image to cause improper link following, potentially leading to data tampering and denial of service. Published on 2025-07-17, the issue is classified under CWE-59 (Improper Link Resolution Before File Access) with a CVSS v3.1 base score of 8.5 (AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H).
Exploitation requires low privileges from a network-accessible attacker with no user interaction needed and low attack complexity. The changed scope enables impacts including low confidentiality (none), low integrity (data tampering), and high availability (denial of service) effects on the targeted system.
Mitigation details are available in the NVIDIA security advisory at https://nvidia.custhelp.com/app/answers/detail/a_id/5659 and the OSS-security mailing list post at http://www.openwall.com/lists/oss-security/2025/07/16/3.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-21818
Vulnerability details
NVIDIA Container Toolkit for all platforms contains a vulnerability in the update-ldcache hook, where an attacker could cause a link following by using a specially crafted container image. A successful exploit of this vulnerability might lead to data tampering and…
more
denial of service.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Vulnerability enables host file tampering/DoS via malicious container image symlink attack (CWE-59), directly facilitating container escape and data/system impact techniques.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Directly remediates the improper link resolution vulnerability (CWE-59) in the NVIDIA Container Toolkit's update-ldcache hook to prevent exploitation via specially crafted container images.
Validates and sanitizes inputs from container images processed by the update-ldcache hook to mitigate improper link resolution before file access.
Monitors integrity of the NVIDIA Container Toolkit software and files to prevent data tampering and detect denial-of-service impacts from symlink exploits.