NVIDIA Nsight Systems for Linux contains a vulnerability in the .run installer, where an attacker could cause an OS command injection by supplying a malicious string to the installation path. A successful exploit of this vulnerability might lead to escalation of privileges, code execution, data tampering, denial of service, and information disclosure.
References
| Link | Resource |
|---|---|
| https://nvd.nist.gov/vuln/detail/CVE-2025-33230 | US Government Resource VDB Entry |
| https://nvidia.custhelp.com/app/answers/detail/a_id/5755 | Patch Vendor Advisory |
| https://www.cve.org/CVERecord?id=CVE-2025-33230 | Third Party Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
02 Feb 2026, 16:07
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:nvidia:cuda_toolkit:*:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* |
|
| References | () https://nvd.nist.gov/vuln/detail/CVE-2025-33230 - US Government Resource, VDB Entry | |
| References | () https://nvidia.custhelp.com/app/answers/detail/a_id/5755 - Patch, Vendor Advisory | |
| References | () https://www.cve.org/CVERecord?id=CVE-2025-33230 - Third Party Advisory | |
| First Time |
Linux
Nvidia cuda Toolkit Nvidia Linux linux Kernel |
20 Jan 2026, 18:16
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-01-20 18:16
Updated : 2026-02-02 16:07
NVD link : CVE-2025-33230
Mitre link : CVE-2025-33230
CVE.ORG link : CVE-2025-33230
JSON object : View
Products Affected
nvidia
- cuda_toolkit
linux
- linux_kernel
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')