Cyber Posture

CVE-2025-33219

High

Published: 28 January 2026

Published
28 January 2026
Modified
15 April 2026
KEV Added
Patch
CVSS Score 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0001 0.4th percentile
Risk Priority 16 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-33219 is a high-severity Integer Overflow or Wraparound (CWE-190) vulnerability in Custhelp (inferred from references). Its CVSS base score is 7.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked at the 0.4th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 RA-5 (Vulnerability Monitoring and Scanning) and SI-2 (Flaw Remediation).

Threat & Defense at a Glance

What attackers do: exploitation maps to Exploitation for Privilege Escalation (T1068). What defenders deploy: see the NIST 800-53 controls recommended below.
Threat & Defense Details

Mitigating Controls (NIST 800-53 r5)AI

SI-2 Flaw Remediation good match
prevent

Directly remediates the integer overflow vulnerability in the NVIDIA kernel module by requiring timely application of vendor-provided patches.

RA-5 Vulnerability Monitoring and Scanning good match
detect

Identifies systems running vulnerable versions of the NVIDIA Display Driver kernel module affected by CVE-2025-33219 through vulnerability scanning.

SI-16 Memory Protection partial match
prevent

Mitigates arbitrary code execution from the integer overflow via memory protections like ASLR, DEP, and stack canaries.

MITRE ATT&CK Enterprise TechniquesAI

T1068 Exploitation for Privilege Escalation Privilege Escalation
Adversaries may exploit software vulnerabilities in an attempt to elevate privileges.
attack.mitre.org →
Why these techniques?

Kernel module integer overflow enables local privilege escalation and arbitrary code execution from low-privileged context.

Confidence: HIGH · MITRE ATT&CK Enterprise v18.1

NVD Description

NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial…

more

of service, or information disclosure.

Deeper analysisAI

CVE-2025-33219, published on 2026-01-28, affects the NVIDIA Display Driver for Linux, specifically a vulnerability in the NVIDIA kernel module that enables an integer overflow or wraparound (CWE-190). This flaw carries a CVSS v3.1 base score of 7.8 (AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H), indicating high impact potential from local access.

A local attacker with low privileges can exploit this vulnerability through low-complexity means without requiring user interaction. Successful exploitation might result in arbitrary code execution, escalation of privileges, data tampering, denial of service, or information disclosure.

Advisories providing mitigation guidance, including patches, are available from NVIDIA at https://nvidia.custhelp.com/app/answers/detail/a_id/5747, the National Vulnerability Database at https://nvd.nist.gov/vuln/detail/CVE-2025-33219, and CVE.org at https://www.cve.org/CVERecord?id=CVE-2025-33219.

Details

CWE(s)
CWE-190

Affected Products

Custhelp
inferred from references and description; NVD did not file a CPE for this CVE

CVEs Like This One

CVE-2025-24156Shared CWE-190
CVE-2026-0031Shared CWE-190
CVE-2026-0861Shared CWE-190
CVE-2026-37540Shared CWE-190
CVE-2025-33218Shared CWE-190
CVE-2026-21385Shared CWE-190
CVE-2025-0587Shared CWE-190
CVE-2026-31648Shared CWE-190
CVE-2024-40635Shared CWE-190
CVE-2025-23016Shared CWE-190

References