This week, Nvidia, Zoom, and Zyxel released critical security updates addressing multiple high-severity vulnerabilities in their products. Nvidia patched two improper isolation bugs (CVE-2024-0135 and CVE-2024-0136) in the Container Toolkit and GPU Operator for Linux, which could lead to code execution, privilege escalation, or data tampering. Zoom addressed a high-severity type confusion flaw (CVE-2025-0147) in its Workplace app for Linux, impacting the Meeting and Video SDKs. Zyxel fixed a privilege escalation vulnerability (CVE-2024-12398) in the web interface of several access point and router models, allowing authenticated users to gain administrator access. Users are urged to update their devices promptly to mitigate these risks.

‍