Security Advisory

CVE-2025-33189

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-11-25 17:58:00

Last updated 2026-02-26 16:07:33

Assigner nvidia

State PUBLISHED

Description

NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware, where an attacker could cause an out-of-bound write. A successful exploit of this vulnerability might lead to code execution, data tampering, denial of service, information disclosure, or escalation of privileges.

← Browse all CVEs View on cve.org ↗