CVE-2025-33216

{"id": "CVE-2025-33216", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "psirt@nvidia.com", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.8, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 2.3}]}, "published": "2026-03-24T21:16:23.903", "references": [{"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-33216", "source": "psirt@nvidia.com"}, {"url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5744", "source": "psirt@nvidia.com"}, {"url": "https://www.cve.org/CVERecord?id=CVE-2025-33216", "source": "psirt@nvidia.com"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Primary", "source": "psirt@nvidia.com", "description": [{"lang": "en", "value": "CWE-131"}]}], "descriptions": [{"lang": "en", "value": "NVIDIA SNAP-4 Container contains a vulnerability in the configuration interface where an attacker on a VM may cause an incorrect calculation of buffer size by sending crafted configurations. A successful exploit of this vulnerability may lead to crash of the SNAP service, causing denial of service of the storage service to the host."}, {"lang": "es", "value": "NVIDIA SNAP-4 Contenedor contiene una vulnerabilidad en la interfaz de configuraci\u00f3n donde un atacante en una VM puede causar un c\u00e1lculo incorrecto del tama\u00f1o del b\u00fafer al enviar configuraciones manipuladas. Un exploit exitoso de esta vulnerabilidad puede provocar la ca\u00edda del servicio SNAP, causando denegaci\u00f3n de servicio del servicio de almacenamiento al host."}], "lastModified": "2026-03-25T15:41:58.280", "sourceIdentifier": "psirt@nvidia.com"}