CVE-2025-33177

Summary

NVIDIA Jetson Linux and IGX OS contain a vulnerability in NvMap, where improper tracking of memory allocations could allow a local attacker to cause memory overallocation. A successful exploitation of this vulnerability might lead to denial of service.

Affected Software

VendorProductVersion RangeStatus
NVIDIAJetson Orin Series35.6.2 and earlieraffected
NVIDIAJetson Orin Series36.4.4 and earlieraffected
NVIDIAJetson Thor Series38.2.1 and earlieraffected
NVIDIAIGX OrinIGX 1.1.2 and earlieraffected

Weaknesses

  • CWE-400: CWE-400 Uncontrolled Resource Consumption

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References