Vulnerability Database

309,614

Total vulnerabilities in the database

CVE-2025-33205

NVIDIA NeMo framework contains a vulnerability in a predefined variable, where an attacker could cause inclusion of functionality from an untrusted control sphere by use of a predefined variable. A successful exploit of this vulnerability may lead to code execution.

Published: Nov 25, 2025
Updated: Nov 26, 2025
CVE: CVE-2025-33205
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.3
AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CWEs:

CWE-829

Affected Software
References

No affected software listed.

https://nvd.nist.gov/vuln/detail/CVE-2025-33205
https://nvidia.custhelp.com/app/answers/detail/a_id/5729
https://www.cve.org/CVERecord?id=CVE-2025-33205

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo