CVE-2025-33221
MEDIUM WAF: Medium
CVSS 6.0
Published: 2026-05-26
CWE-20
NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel driver, where a user could cause an incorrect permission assignment for a critical resource. A successful exploit of this vulnerability might lead to data tampering and denial of service.
WAF Coverage Analysis
Improper Input Validation
Medium WAF Coverage
OWASP: A03:2021 Injection
920xxx - Protocol Enforcement 941xxx - XSS / XXE 942xxx - SQL Injection
Affected Software
| Vendor | Product | Version |
|---|---|---|
| nvidia | gpu_display_driver | 535 - 535.309.01 |
| nvidia | gpu_display_driver | 535 - 539.72 |
| nvidia | gpu_display_driver | 580 - 580.159.03 |
| nvidia | gpu_display_driver | 580 - 582.53 |
| nvidia | gpu_display_driver | 595 - 595.36 |
| nvidia | gpu_display_driver | 595 - 595.71.05 |
References
- nvd.nist.gov (Third Party Advisory)
- nvidia.custhelp.com (Vendor Advisory)
- www.cve.org (Third Party Advisory)