NVIDIA is dedicated to the security and trust of our software products and services, including source code repositories managed through our organization.
If you need to report a security issue, use the appropriate contact points below. Do not report security vulnerabilities through public issues or merge requests. If a potential security issue is inadvertently reported publicly, NVIDIA maintainers may limit public discussion and redirect the reporter to the appropriate private disclosure channels.
To report a potential security vulnerability in any NVIDIA product:
- Web: Security Vulnerability Submission Form
- E-Mail: psirt@nvidia.com
- NVIDIA encourages secure email using the NVIDIA public PGP key
- Include the product or project name, affected branch/version, vulnerability type, reproduction steps, proof of concept if available, and potential impact
For more information, see NVIDIA Product Security Incident Response Team policies.