216.73.217.86

CVE-2025-33228

· Published 20/01/2026 18:16 · Modified 20/01/2026 18:16

Labels: CVE-2025-33228 2026-01-20CVE-2025-33228CWE-78[email protected]

Essential information

Published
20/01/2026 18:16
Modified
20/01/2026 18:16
Author
Creator
CVSS
7.3 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CVSS metrics

Description

NVIDIA Nsight Systems contains a vulnerability in the gfx_hotspot recipe, where an attacker could cause an OS command injection by supplying a malicious string to the process_nsys_rep_cli.py script if the script is invoked manually. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, and information disclosure.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
nvidia / nsight systems cpe:2.3:a:nvidia:nsight_systems:*:*:*:*:*:*:*:*

References