NVIDIA has disclosed a high-severity vulnerability (CVE-2025-23307) in its NeMo Curator, which enables arbitrary code execution and privilege escalation across multiple platforms, posing significant risks to defense and critical infrastructure due to the reliance on AI in secure environments. The flaw, with a CVSS score of 7.8, allows attackers to potentially manipulate AI workflows and exfiltrate sensitive data. Urgent upgrades to version 25.07 are recommended to mitigate these risks, alongside enhanced security measures for AI data processing. This incident underscores the need for robust defenses in AI supply chains, as even minor vulnerabilities can lead to substantial breaches in high-security contexts.