What is the CVSS score of CVE-2025-33203?

CVE-2025-33203 has a CVSS 3.1 base score of 7.6 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L. EPSS exploitation probability: 0.1%.

Which versions of Nvidia are affected by CVE-2025-33203?

Organizations using NVIDIA NeMo Agent Toolkit UI for Web face notable risk from CVE-2025-33203, a server-side request forgery vulnerability rated CVSS 7.6.

How to fix or mitigate CVE-2025-33203?

Within 7 days: Identify all affected systems and apply vendor patches promptly. Implement egress filtering and URL validation for server-side requests.

Nvidia CVE-2025-33203

HIGH

Server-Side Request Forgery (SSRF) (CWE-918)

2025-11-25 psirt@nvidia.com

Denial Of Service Information Disclosure SSRF Nvidia

7.6

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

Low

Availability

Low

Lifecycle Timeline

Analysis Generated

Mar 28, 2026 - 19:23 vuln.today

CVE Published

Nov 25, 2025 - 18:15 nvd

HIGH 7.6

DescriptionNVD

NVIDIA NeMo Agent Toolkit UI for Web contains a vulnerability in the chat API endpoint where an attacker may cause a Server-Side Request Forgery. A successful exploit of this vulnerability may lead to information disclosure and denial of service.

AnalysisAI

NVIDIA NeMo Agent Toolkit UI for Web contains a vulnerability in the chat API endpoint where an attacker may cause a Server-Side Request Forgery. Rated high severity (CVSS 7.6), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Technical ContextAI

This vulnerability is classified as Server-Side Request Forgery (SSRF) (CWE-918), which allows attackers to make the server perform requests to unintended internal or external resources. NVIDIA NeMo Agent Toolkit UI for Web contains a vulnerability in the chat API endpoint where an attacker may cause a Server-Side Request Forgery. A successful exploit of this vulnerability may lead to information disclosure and denial of service.

Affected ProductsAI

See vendor advisory for affected versions.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Validate and allowlist destination URLs, block requests to internal networks, use network segmentation.

More from same product – last 7 days

CVE-2026-46017 Awaiting Data

May 27

In the Linux kernel, the following vulnerability has been resolved: mm: fix deferred split queue races during migration

CVE-2025-33203 vulnerability details – vuln.today

Back