← Volver a CVEs
CVE-2025-33180
HIGH8.0
Descripcion
NVIDIA Cumulus Linux and NVOS products contain a vulnerability in the NVUE interface, where a low-privileged user could inject a command. A successful exploit of this vulnerability might lead to escalation of privileges.
Detalles CVE
Puntuacion CVSS v3.18.0
SeveridadHIGH
Vector CVSSCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vector de ataqueADJACENT_NETWORK
ComplejidadLOW
Privilegios requeridosLOW
Interaccion usuarioNONE
Publicado2/24/2026
Ultima modificacion2/27/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
nvidia:cumulus_linuxnvidia:dgx_gb200nvidia:gb300_nvl72nvidia:nvosnvidia:quantum-x800
Debilidades (CWE)
CWE-77
Referencias
https://nvd.nist.gov/vuln/detail/CVE-2025-33180(psirt@nvidia.com)
https://nvidia.custhelp.com/app/answers/detail/a_id/5722(psirt@nvidia.com)
https://www.cve.org/CVERecord?id=CVE-2025-33180(psirt@nvidia.com)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.