CVE-2025-33219

Medienbericht

EPSS 0.01%
Veröffentlicht 28.01.2026 17:48:07
Zuletzt bearbeitet 29.01.2026 16:31:00
Quelle psirt@nvidia.com
CVE-Watchlists
Login
Unerledigt
Login

NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or information disclosure.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 7

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerNVIDIA

≫

Produkt GeForce

Default Statusunaffected

Version All driver versions prior to 590.48.01

Status affected

HerstellerNVIDIA

≫

Produkt GeForce

Default Statusunaffected

Version All driver versions prior to 580.126.09

Status affected

HerstellerNVIDIA

≫

Produkt GeForce

Default Statusunaffected

Version All driver versions prior to 570.211.01

Status affected

HerstellerNVIDIA

≫

Produkt GeForce

Default Statusunaffected

Version All driver versions prior to 535.288.01

Status affected

HerstellerNVIDIA

≫

Produkt RTX PRO, RTX, Quadro

Default Statusunaffected

Version All driver versions prior to 590.48.01

Status affected

HerstellerNVIDIA

≫

Produkt RTX PRO, RTX, Quadro

Default Statusunaffected

Version All driver versions prior to 580.126.09

Status affected

HerstellerNVIDIA

≫

Produkt RTX PRO, RTX, Quadro

Default Statusunaffected

Version All driver versions prior to 570.211.01

Status affected

HerstellerNVIDIA

≫

Produkt RTX PRO, RTX, Quadro

Default Statusunaffected

Version All driver versions prior to 535.288.01

Status affected

HerstellerNVIDIA

≫

Produkt Tesla

Default Statusunaffected

Version All driver versions prior to 590.48.01

Status affected

HerstellerNVIDIA

≫

Produkt Tesla

Default Statusunaffected

Version All driver versions prior to 580.126.09

Status affected

HerstellerNVIDIA

≫

Produkt Tesla

Default Statusunaffected

Version All driver versions prior to 570.211.01

Status affected

HerstellerNVIDIA

≫

Produkt Tesla

Default Statusunaffected

Version All driver versions prior to 535.288.01

Status affected

HerstellerNVIDIA

≫

Produkt Guest driver

Default Statusunaffected

Version 580.105.08(All versions prior to and including vGPU software 19.3)

Status affected

HerstellerNVIDIA

≫

Produkt Guest driver

Default Statusunaffected

Version 570.195.03(All versions prior to and including vGPU software 18.5)

Status affected

HerstellerNVIDIA

≫

Produkt Guest driver

Default Statusunaffected

Version 535.274.02(All versions prior to and including vGPU software 16.12)

Status affected

HerstellerNVIDIA

≫

Produkt Virtual GPU Manager

Default Statusunaffected

Version 580.105.06(All versions prior to and including vGPU software 19.3)

Status affected

HerstellerNVIDIA

≫

Produkt Virtual GPU Manager

Default Statusunaffected

Version 570.195.02(All versions prior to and including vGPU software 18.5)

Status affected

HerstellerNVIDIA

≫

Produkt Virtual GPU Manager

Default Statusunaffected

Version 535.274.03(All versions prior to and including vGPU software 16.12)

Status affected

HerstellerNVIDIA

≫

Produkt Guest driver

Default Statusunaffected

Version 580.105.08(All versions up to and including the November 2025 release)

Status affected

HerstellerNVIDIA

≫

Produkt Virtual GPU Manager

Default Statusunaffected

Version 580.105.06(All versions up to and including the November 2025 release)

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.01%	0.003

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
psirt@nvidia.com	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE-190 Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.

https://www.heise.de/news/Nvidia-Sicherheitsluecken-Attacken-auf-GPU-Treiber-koennen-zu-Abstuerzen-fuehren-11158836.html

Medienbericht

heise Security

29.01.2026 14:21

https://nvidia.custhelp.com/app/answers/detail/a_id/5747

https://nvd.nist.gov/vuln/detail/CVE-2025-33219

https://www.cve.org/CVERecord?id=CVE-2025-33219

https://nvd.nist.gov/vuln/detail/CVE-2025-33219

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-33219

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-33219

EUVD