CVE-2025-33231

MEDIUM 6.7

CVSS Score

6.7

EPSS Score

0.0%

EPSS Percentile

0th

NVIDIA Nsight Systems for Windows contains a vulnerability in the application’s DLL loading mechanism where an attacker could cause an uncontrolled search path element by exploiting insecure DLL search paths. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service and information disclosure.

CWE	CWE-427
Vendor	nvidia
Product	cuda toolkit
Published	Jan 20, 2026
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for nvidia cuda toolkit

Be the first to know when new medium vulnerabilities affecting nvidia cuda toolkit are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

High

Privileges Required

Low

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

NVIDIA / CUDA Toolkit

All versions prior to CUDA Toolkit 13.1

References

NVD ↗ CVE.org ↗ EPSS Data ↗

nvd.nist.gov: https://nvd.nist.gov/vuln/detail/CVE-2025-33231 cve.org: https://www.cve.org/CVERecord?id=CVE-2025-33231 nvidia.custhelp.com: https://nvidia.custhelp.com/app/answers/detail/a_id/5755