Cyber Posture

CVE-2025-23303

High

Published: 13 August 2025

Published
13 August 2025
Modified
23 September 2025
KEV Added
Patch
CVSS Score 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0217 84.4th percentile
Risk Priority 17 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-23303 is a high-severity Deserialization of Untrusted Data (CWE-502) vulnerability in Nvidia Nemo. Its CVSS base score is 7.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked in the top 15.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-16 (Memory Protection).

Threat & Defense at a Glance

What attackers do: exploitation maps to Exploitation for Privilege Escalation (T1068). What defenders deploy: see the NIST 800-53 controls recommended below.
Threat & Defense Details

Mitigating Controls (NIST 800-53 r5)AI

SI-2 Flaw Remediation good match
prevent

Flaw remediation directly mitigates the deserialization vulnerability by applying patches to prevent exploitation leading to code execution and data tampering.

SI-10 Information Input Validation good match
prevent

Information input validation ensures untrusted data is checked before deserialization, directly preventing the unsafe deserialization attack vector.

SI-16 Memory Protection good match
prevent

Memory protection safeguards such as non-executable memory prevent arbitrary code execution resulting from deserialization exploits.

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
attack.mitre.org →
Why these techniques?

Unsafe deserialization enables local low-privileged arbitrary code execution, directly facilitating exploitation for privilege escalation.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

NVD Description

NVIDIA NeMo Framework for all platforms contains a vulnerability where a user could cause a deserialization of untrusted data by remote code execution. A successful exploit of this vulnerability might lead to code execution and data tampering.

Deeper analysisAI

CVE-2025-23303 is a deserialization of untrusted data vulnerability (CWE-502) in the NVIDIA NeMo Framework across all platforms. It enables a user to trigger remote code execution through unsafe deserialization, potentially leading to arbitrary code execution and data tampering. The vulnerability carries a CVSS v3.1 base score of 7.8 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H), indicating high impact on confidentiality, integrity, and availability with low attack complexity and requiring only local access and low privileges.

A local attacker with low-level privileges can exploit this vulnerability without user interaction. Successful exploitation allows the attacker to execute arbitrary code on the affected system and tamper with data, compromising the integrity and security of the NeMo Framework environment.

Mitigation details are outlined in official advisories, including NVIDIA's security bulletin at https://nvidia.custhelp.com/app/answers/detail/a_id/5686, the NVD entry at https://nvd.nist.gov/vuln/detail/CVE-2025-23303, and the CVE record at https://www.cve.org/CVERecord?id=CVE-2025-23303. Security practitioners should consult these resources for patch availability and recommended remediation steps.

Details

CWE(s)
CWE-502

Affected Products

nvidia
nemo
≤ 2.3.2

CVEs Like This One

CVE-2025-23360Same product: Apple Macos
CVE-2025-23304Same product: Apple Macos
CVE-2026-4456Same product: Apple Macos
CVE-2026-7343Same product: Apple Macos
CVE-2026-6310Same product: Apple Macos
CVE-2026-24186Same product: Apple Macos
CVE-2025-69276Same product: Linux Linux Kernel
CVE-2026-24159Same product: Nvidia Nemo
CVE-2026-24157Same product: Nvidia Nemo
CVE-2025-14915Same product: Apple Macos

References