CVE-2025-33218 — Integer Overflow or Wraparound in Nvidia Geforce

CWE-190 — Integer Overflow or Wraparound3 documents3 sources

Severity

7.8HIGHNVD

EPSS

0.0%

top 99.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nvidia Geforce Nvidia Guest Driver Nvidia Tesla

Timeline

PublishedJan 28

Description

NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys), where an attacker could cause an integer overflow. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or information disclosure.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

▶CVEListV5nvidia/guest_driver539.56(All versions prior to and including vGPU software 16.12), 573.76(All versions prior to and including vGPU software 18.5), 581.80(All versions prior to and including vGPU software 19.3)+2

▶CVEListV5nvidia/tesla4 versions+3

▶CVEListV5nvidia/geforceAll driver versions prior to 591.59

🔴Vulnerability Details

GHSA

GHSA-4p4m-966v-gqhf: NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm↗2026-01-28

▶

CVEList

CVE-2025-33218: NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm↗2026-01-28

▶