A critical container escape vulnerability (CVE-2025-23266) in NVIDIA Container Toolkit poses a severe threat to managed AI cloud services, earning a CVSS score of 9.0 out of 10.0. This flaw allows 37% of cloud environments to potentially be accessed by attackers using a three-line exploit, enabling complete server takeover through a simple Dockerfile manipulation.