CVE-2025-33189

Publication date

2025-11-25 17:58:00

Family

nvidia

State

PUBLISHED

Description

NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware, where an attacker could cause an out-of-bound write. A successful exploit of this vulnerability might lead to code execution, data tampering, denial of service, information disclosure, or escalation of privileges.