How severe is CVE-2025-33192?

CVE-2025-33192 has a CVSS v3 score of 5.7 (MEDIUM).

CVE-2025-33192

Name: dgx_spark
Author: nvidia

5.7MEDIUM

NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware, where an attacker could cause an arbitrary memory read. A successful exploit of this vulnerability might lead to denial of service.

发布于: 11/25/2025更新于: 12/2/2025

描述

NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware, where an attacker could cause an arbitrary memory read. A successful exploit of this vulnerability might lead to denial of service.

AI分析AI驱动

受影响产品

nvidiadgx_os

nvidiadgx_spark

参考资料

https://nvd.nist.gov/vuln/detail/CVE-2025-33192
Third Party Advisory
https://nvidia.custhelp.com/app/answers/detail/a_id/5720
Vendor Advisory
https://www.cve.org/CVERecord?id=CVE-2025-33192
Third Party Advisory