CVE-2025-33225
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
16/12/2025
Last modified:
02/02/2026
Description
NVIDIA Resiliency Extension for Linux contains a vulnerability in log aggregation, where an attacker could cause predictable log-file names. A successful exploit of this vulnerability may lead to escalation of privileges, code execution, denial of service, information disclosure, and data tampering.
Impact
Base Score 3.x
8.40
Severity 3.x
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:nvidia:nvidia_resiliency_extension:*:*:*:*:*:*:*:* | 0.5.0 (excluding) | |
| cpe:2.3:a:nvidia:nvidia_resiliency_extension:0.5.0:rc1:*:*:*:*:*:* | ||
| cpe:2.3:a:nvidia:nvidia_resiliency_extension:0.5.0:rc2:*:*:*:*:*:* | ||
| cpe:2.3:a:nvidia:nvidia_resiliency_extension:0.5.0:rc3:*:*:*:*:*:* | ||
| cpe:2.3:a:nvidia:nvidia_resiliency_extension:0.5.0:rc4:*:*:*:*:*:* | ||
| cpe:2.3:a:nvidia:nvidia_resiliency_extension:0.5.0:rc5:*:*:*:*:*:* | ||
| cpe:2.3:a:nvidia:nvidia_resiliency_extension:0.5.0:rc6:*:*:*:*:*:* | ||
| cpe:2.3:a:nvidia:nvidia_resiliency_extension:0.5.0:rc7:*:*:*:*:*:* | ||
| cpe:2.3:a:nvidia:nvidia_resiliency_extension:0.5.0:rc8:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page