{"vulnerability": "CVE-2025-2325", "sightings": [{"uuid": "bc2f2db0-d5ce-4de9-b1a4-036c29687f05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2325", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkfxwds7ee24", "content": "", "creation_timestamp": "2025-03-15T11:01:06.121474Z"}, {"uuid": "267465e5-22a6-4bce-9629-42462dd69711", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23252", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lruopjlifc2m", "content": "", "creation_timestamp": "2025-06-18T09:22:29.712079Z"}, {"uuid": "25d44134-fca6-4be3-916d-ddd74502c5d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23259", "type": "seen", "source": "https://gist.github.com/Darkcrai86/0cb733c53fd1b3670875920804639d08", "content": "", "creation_timestamp": "2025-10-10T06:47:11.000000Z"}, {"uuid": "160b0b35-a297-4302-9320-304e5cdd3fbb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23250", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lnibs6r66c2q", "content": "", "creation_timestamp": "2025-04-23T13:18:38.607654Z"}, {"uuid": "2dc106be-1c09-4559-932c-31fd60f307fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23254", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114433137660446340", "content": "", "creation_timestamp": "2025-05-01T14:51:50.043708Z"}, {"uuid": "d1289d27-1e84-4407-abac-407162e5d405", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23254", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lo4qb4uzyl2l", "content": "", "creation_timestamp": "2025-05-01T16:30:45.715710Z"}, {"uuid": "0bd890e3-5f22-45df-aced-43e35a05a016", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23251", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lngewcid5y2g", "content": "", "creation_timestamp": "2025-04-22T19:09:16.707078Z"}, {"uuid": "e4615469-7bff-433e-ad9f-f1f0fd83ed09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23250", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lngewdviyn2b", "content": "", "creation_timestamp": "2025-04-22T19:09:21.377860Z"}, {"uuid": "a4e600ab-dc8b-4a0b-9700-0995b779b473", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23253", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lngln3cxfv2y", "content": "", "creation_timestamp": "2025-04-22T21:09:27.879746Z"}, {"uuid": "3ff6f268-7eb3-497d-b65c-2fab41992939", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23250", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13000", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23250\n\ud83d\udd25 CVSS Score: 7.6 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L)\n\ud83d\udd39 Description: NVIDIA NeMo Framework contains a vulnerability where an attacker could cause an improper limitation of a pathname to a restricted directory by an arbitrary file write. A successful exploit of this vulnerability might lead to code execution and data tampering.\n\ud83d\udccf Published: 2025-04-22T15:35:29.183Z\n\ud83d\udccf Modified: 2025-04-23T03:56:11.696Z\n\ud83d\udd17 References:\n1. https://nvidia.custhelp.com/app/answers/detail/a_id/5641", "creation_timestamp": "2025-04-23T04:03:51.000000Z"}, {"uuid": "0583ace6-5341-419a-87c7-d6a559acd391", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23254", "type": "seen", "source": "https://gist.github.com/Darkcrai86/c973de31165904f2a643ea221893d388", "content": "", "creation_timestamp": "2025-11-14T13:14:13.000000Z"}, {"uuid": "14cb355d-91b8-4236-bb2b-e01d0d70e42e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23254", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/14282", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23254\n\ud83d\udd25 CVSS Score: 8.8 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: NVIDIA TensorRT-LLM for any platform contains a vulnerability in python executor where an attacker may cause a data validation issue by local access to the TRTLLM server. A successful exploit of this vulnerability may lead to code execution, information disclosure and data tampering.\n\ud83d\udccf Published: 2025-05-01T14:05:50.487Z\n\ud83d\udccf Modified: 2025-05-01T14:05:50.487Z\n\ud83d\udd17 References:\n1. https://nvidia.custhelp.com/app/answers/detail/a_id/5648", "creation_timestamp": "2025-05-01T14:15:17.000000Z"}, {"uuid": "e31d0ff3-f0aa-43f5-bd92-94391e375f9c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23256", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lxzvtlim2a2r", "content": "", "creation_timestamp": "2025-09-04T19:44:30.285375Z"}, {"uuid": "f0d48e8f-4b92-4b0f-8c5f-004a1e2b97af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23259", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mb7a6kxues2b", "content": "", "creation_timestamp": "2025-12-30T11:19:45.134029Z"}, {"uuid": "71389a18-d12f-40e0-98cb-d2644bbf3d68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23259", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mb7cwukb2c2b", "content": "", "creation_timestamp": "2025-12-30T12:09:21.724520Z"}, {"uuid": "c2503ad6-8814-484f-b7fd-16af3ba108ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2325", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7673", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2325\n\ud83d\udd25 CVSS Score: 7.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: The WP Test Email plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Email Logs in all versions up to, and including, 1.1.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.\n\ud83d\udccf Published: 2025-03-15T06:40:01.724Z\n\ud83d\udccf Modified: 2025-03-15T06:40:01.724Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/7a0a9ff8-ed93-4de9-ba49-730b2253c6a4?source=cve\n2. https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3251086%40wp-test-email&new=3251086%40wp-test-email&sfp_email=&sfph_mail=", "creation_timestamp": "2025-03-15T06:46:42.000000Z"}, {"uuid": "2c5e397d-b1bd-4286-bfe4-eff1fc473de2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23251", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12999", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23251\n\ud83d\udd25 CVSS Score: 7.6 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:L)\n\ud83d\udd39 Description: NVIDIA NeMo Framework contains a vulnerability where a user could cause an improper control of generation of code by remote code execution. A successful exploit of this vulnerability might lead to code execution and data tampering.\n\ud83d\udccf Published: 2025-04-22T15:42:03.520Z\n\ud83d\udccf Modified: 2025-04-23T03:56:13.359Z\n\ud83d\udd17 References:\n1. https://nvidia.custhelp.com/app/answers/detail/a_id/5641", "creation_timestamp": "2025-04-23T04:03:50.000000Z"}, {"uuid": "3bef9259-9bd2-40e7-92b5-77d96b6cc20d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23252", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18682", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23252\n\ud83d\udd25 CVSS Score: 4.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: The NVIDIA NVDebug tool contains a vulnerability that may allow an actor to gain access to restricted components. A successful exploit of this vulnerability may lead to information disclosure.\n\ud83d\udccf Published: 2025-06-18T00:17:07.941Z\n\ud83d\udccf Modified: 2025-06-18T00:17:07.941Z\n\ud83d\udd17 References:\n1. https://nvidia.custhelp.com/app/answers/detail/a_id/5651", "creation_timestamp": "2025-06-18T01:38:28.000000Z"}, {"uuid": "b6046734-6f1f-47b9-9bd6-6a13d8ddcccb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23253", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12936", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23253\n\ud83d\udd25 CVSS Score: 2.5 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:L)\n\ud83d\udd39 Description: NVIDIA NvContainer service for Windows contains a vulnerability in its usage of OpenSSL, where an attacker could exploit a hard-coded constant issue by copying a malicious DLL in a hard-coded path. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering.\n\ud83d\udccf Published: 2025-04-22T18:45:57.735Z\n\ud83d\udccf Modified: 2025-04-22T18:55:57.135Z\n\ud83d\udd17 References:\n1. https://nvidia.custhelp.com/app/answers/detail/a_id/5644", "creation_timestamp": "2025-04-22T19:03:26.000000Z"}, {"uuid": "9c1dbb0c-8cc8-4ef6-9154-685a779194be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23253", "type": "seen", "source": "https://t.me/cvedetector/23544", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23253 - NVIDIA NvContainer OpenSSL Hard-Coded Constant DLL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23253 \nPublished : April 22, 2025, 7:15 p.m. | 47\u00a0minutes ago \nDescription : NVIDIA NvContainer service for Windows contains a vulnerability in its usage of OpenSSL, where an attacker could exploit a hard-coded constant issue by copying a malicious DLL in a hard-coded path. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering. \nSeverity: 2.5 | LOW \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-22T22:35:21.000000Z"}, {"uuid": "2f38a063-c5dd-47e7-8484-357c8604ec67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23251", "type": "seen", "source": "https://t.me/cvedetector/23537", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23251 - NVIDIA NeMo Framework Code Generation Remote Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23251 \nPublished : April 22, 2025, 4:15 p.m. | 1\u00a0hour, 47\u00a0minutes ago \nDescription : NVIDIA NeMo Framework contains a vulnerability where a user could cause an improper control of generation of code by remote code execution. A successful exploit of this vulnerability might lead to code execution and data tampering. \nSeverity: 7.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-22T20:54:56.000000Z"}, {"uuid": "40cac143-454f-484f-9d62-ae9ea953c35f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23250", "type": "seen", "source": "https://t.me/cvedetector/23536", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23250 - NVIDIA NeMo Framework Arbitrary File Write Code Execution Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23250 \nPublished : April 22, 2025, 4:15 p.m. | 1\u00a0hour, 47\u00a0minutes ago \nDescription : NVIDIA NeMo Framework contains a vulnerability where an attacker could cause an improper limitation of a pathname to a restricted directory by an arbitrary file write. A successful exploit of this vulnerability might lead to code execution and data tampering. \nSeverity: 7.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-22T20:54:53.000000Z"}, {"uuid": "07d4be05-e1d4-4d6d-a049-cf36dc236983", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23256", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mmhjjugw4u2c", "content": "CVE-2025-23256 - High severity info disclosure in Nvidia BlueField. Local access allows config tampering, DoS, privilege escalation. CVSS 8.7. No patch yet. Monitor for updates. #CVE #Nvidia #infosec\n\nhttps://www.valtersit.com/cve/CVE-2025-23256/", "creation_timestamp": "2026-05-22T18:05:28.340709Z"}, {"uuid": "c9f27340-1771-47c1-a3d6-908e4d7824bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2325", "type": "seen", "source": "https://t.me/cvedetector/20361", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2325 - WordPress WP Test Email Stored Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2325 \nPublished : March 15, 2025, 7:15 a.m. | 36\u00a0minutes ago \nDescription : The WP Test Email plugin for WordPress is vulnerable to Stored Cross-Site Scripting via Email Logs in all versions up to, and including, 1.1.8 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-15T09:26:13.000000Z"}, {"uuid": "e083bbe0-088f-4c90-9f5c-4706e4c52a79", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2325", "type": "seen", "source": "Telegram/NiCFwj7Qhc8Od_oqSEEjvvfBSE4ySFWE7o6SlOUKd9enu1o", "content": "", "creation_timestamp": "2025-03-15T08:00:21.000000Z"}, {"uuid": "b3ac6184-761d-41f6-91b5-73e9d1154db9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23254", "type": "seen", "source": "Telegram/JGiVT9HglLOsy8jZw5Frp8KyOrdfS_vSdUkjYKsOCxXFq4Q", "content": "", "creation_timestamp": "2025-05-01T17:01:26.000000Z"}]}