PT-2025-48050 · Nvidia · Dgx Spark Gb10

Published

2025-11-25

Updated

2025-11-30

CVE-2025-33189

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions NVIDIA DGX Spark GB10 (affected versions not specified)

Description The NVIDIA DGX Spark GB10 SROOT firmware contains a flaw that allows an attacker to cause an out-of-bound write. Exploitation of this issue could potentially lead to code execution, data tampering, denial of service, information disclosure, or escalation of privileges.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

BDU:2025-14808

CVE-2025-33189

Affected Products

Dgx Spark Gb10

PT-2025-48050 · Nvidia · Dgx Spark Gb10

CVE-2025-33189

Weakness Enumeration

Related Identifiers

Affected Products

References · 11