CNNVD-202511-2740 Information

CNNVD ID

CNNVD-202511-2740

Related CVE

CVE-2025-33191

• CNNVD Published: 2025-11-25

Description (Chinese)

NVIDIA DGX Spark是美国英伟达（NVIDIA）公司的一款个人AI计算机。 NVIDIA DGX Spark GB10存在输入验证错误漏洞，该漏洞源于OSROOT固件中存在无效内存读取，可能导致拒绝服务。

Description (English)

NVIDIA DGX Spark is a personal AI computer of NVIDIA. NVIDIA DGX Spark GB10 has an input validation error loophole, which stems from the presence of invalid RAM reading in OSROOT solids, which may lead to the denial of service.

Hazard Level

High

Vulnerability Type

输入验证错误

Affected Vendor

英伟达

Published

2025-11-25

Last Modified

2026-02-24

References

https://nvd.nist.gov/vuln/detail/CVE-2025-33191 https://nvidia.custhelp.com/app/answers/detail/a_id/5720 https://www.cve.org/CVERecord?id=CVE-2025-33191 https://access.redhat.com/security/cve/cve-2025-33191

Patch

https://nvidia.custhelp.com/app/answers/detail/a_id/5720