CVE-2025-33177

CWE-400Uncontrolled Resource Consumption4 documents4 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 91.91%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Nvidia IGX OrinNvidia Jetson Orin SeriesNvidia Jetson Thor Series
Timeline
PublishedOct 14
Latest updateApr 8

Description

NVIDIA Jetson Linux and IGX OS contain a vulnerability in NvMap, where improper tracking of memory allocations could allow a local attacker to cause memory overallocation. A successful exploitation of this vulnerability might lead to denial of service.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

CVEListV5nvidia/jetson_orin_series35.6.2 and earlier, 36.4.4 and earlier+1
CVEListV5nvidia/jetson_thor_series38.2.1 and earlier
CVEListV5nvidia/igx_orinIGX 1.1.2 and earlier

🔴Vulnerability Details

2
GHSA
GHSA-3553-hfc6-7rh5: NVIDIA Jetson Linux and IGX OS contain a vulnerability in NvMap, where improper tracking of memory allocations could allow a local attacker to cause m2025-10-14
CVEList
CVE-2025-33177: NVIDIA Jetson Linux and IGX OS contain a vulnerability in NvMap, where improper tracking of memory allocations could allow a local attacker to cause m2025-10-14

💥Exploits & PoCs

1
Exploit-DB
xibocms 3.3.4 - RCE2026-04-08
CVE-2025-33177 (MEDIUM CVSS 5.5) | NVIDIA Jetson Linux and IGX OS cont | cvebase.io