Cyber Posture

CVE-2025-33214

HighRCE

Published: 09 December 2025

Published
09 December 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
EPSS Score 0.0011 28.7th percentile
Risk Priority 18 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-33214 is a high-severity Deserialization of Untrusted Data (CWE-502) vulnerability in Custhelp (inferred from references). Its CVSS base score is 8.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Client Execution (T1203); ranked at the 28.7th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Threat & Defense at a Glance

What attackers do: exploitation maps to Exploitation for Client Execution (T1203). What defenders deploy: see the NIST 800-53 controls recommended below.
Threat & Defense Details

Mitigating Controls (NIST 800-53 r5)AI

SI-2 Flaw Remediation good match
prevent

Directly remediates the deserialization flaw (CWE-502) in NVIDIA NVTabular Workflow component through timely patching as advised by NVIDIA security bulletins.

SI-10 Information Input Validation good match
prevent

Validates untrusted network inputs to the Workflow component to reject malicious deserialization payloads requiring user interaction.

SI-16 Memory Protection partial match
prevent

Provides memory protections such as ASLR and DEP to mitigate arbitrary code execution, DoS, disclosure, and tampering resulting from successful deserialization.

MITRE ATT&CK Enterprise TechniquesAI

T1203 Exploitation for Client Execution Execution
Adversaries may exploit software vulnerabilities in client applications to execute code.
attack.mitre.org →
Why these techniques?

Deserialization vulnerability (CWE-502) in NVIDIA NVTabular Workflow enables arbitrary code execution through user interaction (UI:R) with malicious network input (AV:N), directly facilitating Exploitation for Client Execution.

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

NVD Description

NVIDIA NVTabular for Linux contains a vulnerability in the Workflow component, where a user could cause a deserialization issue. A successful exploit of this vulnerability might lead to code execution, denial of service, information disclosure, and data tampering.

Deeper analysisAI

CVE-2025-33214 affects NVIDIA NVTabular for Linux in its Workflow component, where a deserialization issue (CWE-502) can be triggered by a user. This vulnerability, published on 2025-12-09T18:15:49.610, carries a CVSS v3.1 base score of 8.8 (AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H), indicating high severity due to network accessibility, low complexity, and significant impacts on confidentiality, integrity, and availability.

Attackers require no privileges (PR:N) but need to lure a user into some interaction (UI:R), such as processing malicious input over the network (AV:N). Successful exploitation could enable arbitrary code execution, denial of service, information disclosure, or data tampering on the targeted system.

Mitigation guidance is available in vendor and public advisories, including NVIDIA's security bulletin at https://nvidia.custhelp.com/app/answers/detail/a_id/5739, the NVD entry at https://nvd.nist.gov/vuln/detail/CVE-2025-33214, and the CVE record at https://www.cve.org/CVERecord?id=CVE-2025-33214.

Details

CWE(s)
CWE-502

Affected Products

Custhelp
inferred from references and description; NVD did not file a CPE for this CVE

CVEs Like This One

CVE-2025-64512Shared CWE-502
CVE-2026-42471Shared CWE-502
CVE-2025-33252Shared CWE-502
CVE-2025-54539Shared CWE-502
CVE-2025-60035Shared CWE-502
CVE-2025-60036Shared CWE-502
CVE-2025-67729Shared CWE-502
CVE-2025-33210Shared CWE-502
CVE-2026-24765Shared CWE-502
CVE-2026-25925Shared CWE-502

References