CVE-2025-33242

Summary

NVIDIA B300 MCU contains a vulnerability in the CX8 MCU that could allow a malicious actor to modify unsupported registries, causing a bad state. A successful exploit of this vulnerability might lead to denial of service and data tampering.

Affected Software

VendorProductVersion RangeStatus
NVIDIAHGX and DGX B300All versions prior to and including 1.0affected

Weaknesses

  • CWE-1234: CWE-1234 Hardware Internal or Debug Modes Allow Override of Locks

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References