CVE-2025-33228

Name of the Vulnerable Software and Affected Versions NVIDIA Nsight Systems (affected versions not specified)

Description The software contains a flaw in the gfx hotspot recipe that could allow an attacker to inject OS commands. This is possible by providing a malicious string to the process nsys rep cli.py script when it is manually invoked. A successful exploit could result in code execution, privilege escalation, data tampering, denial of service, and information disclosure.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.