{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-15T13:00:29.715","vulnerabilities":[{"cve":{"id":"CVE-2025-33199","sourceIdentifier":"psirt@nvidia.com","published":"2025-11-25T18:15:51.890","lastModified":"2025-12-02T17:29:09.797","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware, where an attacker could cause incorrect control flow behavior. A successful exploit of this vulnerability might lead to data tampering."},{"lang":"es","value":"NVIDIA DGX Spark GB10 contiene una vulnerabilidad en el firmware SROOT, donde un atacante podría causar un comportamiento incorrecto del flujo de control. Un exploit exitoso de esta vulnerabilidad podría conducir a la manipulación de datos."}],"metrics":{"cvssMetricV31":[{"source":"psirt@nvidia.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1\/AV:L\/AC:L\/PR:H\/UI:N\/S:C\/C:N\/I:L\/A:N","baseScore":3.2,"baseSeverity":"LOW","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"HIGH","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":1.5,"impactScore":1.4},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1\/AV:L\/AC:L\/PR:L\/UI:N\/S:C\/C:N\/I:L\/A:N","baseScore":3.8,"baseSeverity":"LOW","attackVector":"LOCAL","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"LOW","availabilityImpact":"NONE"},"exploitabilityScore":2.0,"impactScore":1.4}]},"weaknesses":[{"source":"psirt@nvidia.com","type":"Secondary","description":[{"lang":"en","value":"CWE-670"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:nvidia:dgx_os:-:*:*:*:*:*:*:*","matchCriteriaId":"40EF912C-72C4-4758-9157-169CE92B33C5"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:nvidia:dgx_spark:-:*:*:*:*:*:*:*","matchCriteriaId":"76975E53-4E5C-4C6D-85D9-EE2879F960DF"}]}]}],"references":[{"url":"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-33199","source":"psirt@nvidia.com","tags":["Third Party Advisory"]},{"url":"https:\/\/nvidia.custhelp.com\/app\/answers\/detail\/a_id\/5720","source":"psirt@nvidia.com","tags":["Vendor Advisory"]},{"url":"https:\/\/www.cve.org\/CVERecord?id=CVE-2025-33199","source":"psirt@nvidia.com","tags":["Third Party Advisory"]}]}}]}