What is the CVSS score of CVE-2025-33219?

CVE-2025-33219 has a CVSS 3.1 base score of 7.8 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H. EPSS exploitation probability: 0.0%.

Which versions of Linux are affected by CVE-2025-33219?

NVIDIA Display Driver for Linux contains a HIGH severity vulnerability (CVE-2025-33219) that could allow attackers to trigger a kernel-level integer overflow, potentially leading to system compromise…. A patch is available.

How to fix or mitigate CVE-2025-33219?

Within 24 hours: Inventory all Linux systems running NVIDIA Display Drivers and assess exposure in production vs. non-production environments. Within 7 days: Implement network segmentation to restrict direct access to GPU-enabled systems and disable unnecessary display driver features if workloads permit; test any available workarounds in non-production. Within 30 days: Monitor NVIDIA's security advisories for patch availability and establish an expedited patching plan; prioritize patching critical systems first.

Linux CVE-2025-33219

HIGH

Integer Overflow or Wraparound (CWE-190)

2026-01-28 psirt@nvidia.com

Privilege Escalation Denial Of Service Information Disclosure Linux Integer Overflow Suse

7.8

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Patch released

Apr 06, 2026 - 02:30 nvd

Patch available

Analysis Generated

Mar 12, 2026 - 21:54 vuln.today

CVE Published

Jan 28, 2026 - 18:16 nvd

HIGH 7.8

DescriptionNVD

NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or information disclosure.

AnalysisAI

NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. [CVSS 7.8 HIGH]

Technical ContextAI

Classified as CWE-190 (Integer Overflow or Wraparound). Affects the NVIDIA kernel component of NVIDIA kernel module where an attacker. NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or information disclosure.