CVE-2025-33199 | NVIDIA DGX Spark GB10 SROOT Firmware control flow

November 25, 2025 Yanac

A vulnerability has been found in NVIDIA DGX Spark GB10 and classified as problematic. This affects an unknown part of the component SROOT Firmware. This manipulation causes incorrect control flow.

This vulnerability is handled as CVE-2025-33199. It is possible to launch the attack on the local host. There is not any exploit available.VulDB Recent EntriesRead More

CVE-2025-33205 | NVIDIA NeMo Framework inclusion of functionality from untrusted control sphere
CVE-2025-33197 | NVIDIA DGX Spark GB10 SROOT Firmware null pointer dereference