CVE-2025-33187

Name of the Vulnerable Software and Affected Versions NVIDIA DGX Spark GB10

Description The NVIDIA DGX Spark GB10 contains a flaw in the SROOT component. An attacker with privileged access could potentially gain access to System on a Chip (SoC) protected areas. A successful exploit may lead to code execution, information disclosure, data tampering, denial of service, or escalation of privileges. The potential impact on AI training workloads and sensitive model data is significant.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.