Nixpkgs security tracker

Untriaged

Permalink CVE-2025-33244

9.0 CRITICAL

CVSS version: 3.1
Attack vector (AV): ADJACENT_NETWORK
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): CHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 3 weeks, 4 days ago

NVIDIA APEX for Linux contains a vulnerability where an unauthorized …

NVIDIA APEX for Linux contains a vulnerability where an unauthorized attacker could cause a deserialization of untrusted data. This vulnerability affects environments that use PyTorch versions earlier than 2.6. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, data tampering, and information disclosure.

References

Affected products

Apex

==All versions that do not include commit db8e053

Matching in nixpkgs

pkgs.vimPlugins.nvim-treesitter-parsers.apex

None

nixos-unstable 0.0.0+rev=3597575
- nixpkgs-unstable 0.0.0+rev=3597575
- nixos-unstable-small 0.0.0+rev=3597575
nixos-25.11 -
- nixos-25.11-small
- nixpkgs-25.11-darwin

pkgs.home-assistant-custom-lovelace-modules.apexcharts-card

A Lovelace card to display advanced graphs and charts based on ApexChartsJS for Home Assistant

nixos-unstable 2.2.3
- nixpkgs-unstable 2.2.3
- nixos-unstable-small 2.2.3
nixos-25.11 2.2.3
- nixos-25.11-small 2.2.3
- nixpkgs-25.11-darwin 2.2.3

Package maintainers