CVE-2025-33215

Published: Mar 24, 2026 Last Modified: Mar 24, 2026
ExploitDB:
Other exploit source:
Google Dorks:
MEDIUM 6,8
Source: [email protected]
Attack Vector: adjacent_network
Attack Complexity: low
Privileges Required: low
User Interaction: none
Scope: changed
Confidentiality: none
Integrity: none
Availability: high

Description

AI Translation Available

NVIDIA SNAP-4 Container contains a vulnerability in the VIRTIO-BLK component where a malicious guest VM may cause use of out-of-range pointer offset by sending crafted messages. A successful exploit of this vulnerability may lead to a denial of service of the DPA and impact the availability of storage to other VMs.

823

Use of Out-of-range Pointer Offset

Incomplete
Abstraction: Base Structure: Simple
Common Consequences
Security Scopes Affected:
Confidentiality Availability Integrity
Potential Impacts:
Read Memory Dos: Crash, Exit, Or Restart Execute Unauthorized Code Or Commands Modify Memory
Applicable Platforms
Languages: C, C++, Memory-Unsafe
View CWE Details
https://nvd.nist.gov/vuln/detail/CVE-2025-33215
https://nvd.nist.gov/vuln/detail/CVE-2025-33215
https://nvidia.custhelp.com/app/answers/detail/a_id/5744
https://nvidia.custhelp.com/app/answers/detail/a_id/5744
https://www.cve.org/CVERecord?id=CVE-2025-33215
https://www.cve.org/CVERecord?id=CVE-2025-33215