CVE-2025-33189 | NVIDIA DGX Spark GB10 SROOT Firmware out-of-bounds write

November 25, 2025 Yanac

A vulnerability was found in NVIDIA DGX Spark GB10. It has been rated as critical. The affected element is an unknown function of the component SROOT Firmware. The manipulation leads to out-of-bounds write.

This vulnerability is referenced as CVE-2025-33189. The attack can only be performed from a local environment. No exploit is available.VulDB Recent EntriesRead More

CVE-2025-61167 | SIGB PMB 8.0.1.14 ajax_selector.php id/datas sql injection
CVE-2025-33203 | NVIDIA NeMo Agent ToolKit UI for Web API Endpoint server-side request forgery