CVE-2025-33198 identifies a vulnerability in the SROOT firmware component of NVIDIA DGX Spark GB10 systems, specifically related to improper handling of sensitive information in resources that are reused. The vulnerability is categorized under CWE-226, which involves sensitive information not being removed before resource reuse, potentially leading to information disclosure. The flaw exists in all versions of the DGX Spark prior to the OTA0 firmware update. An attacker with low-level privileges and local access could exploit this vulnerability to access residual sensitive data left in reused resources, such as memory buffers or storage segments, that were not properly sanitized. The vulnerability does not affect system integrity or availability, nor does it require user interaction, but it compromises confidentiality to a limited extent. The CVSS 3.1 base score is 3.3, reflecting low severity due to the requirement for local access and limited impact. No public exploits have been reported, and NVIDIA has reserved the CVE since April 2025, publishing details in November 2025. The lack of a patch link suggests that a firmware update (OTA0) will address the issue. This vulnerability is particularly relevant for organizations relying on DGX Spark systems for AI, machine learning, or high-performance computing workloads, where sensitive data confidentiality is critical.

The primary impact of CVE-2025-33198 is the potential disclosure of sensitive information residing in reused resources within the DGX Spark system's firmware. For European organizations, especially those engaged in AI research, data analytics, or HPC tasks using NVIDIA DGX Spark, this could lead to exposure of proprietary algorithms, datasets, or confidential operational data. Although the vulnerability does not allow remote exploitation and requires local access with low privileges, insider threats or compromised local accounts could leverage this flaw to extract sensitive information. The limited scope and low severity reduce the likelihood of widespread disruption, but in regulated industries such as finance, healthcare, or defense, even minor data leaks can have compliance and reputational consequences. The absence of known exploits in the wild lowers immediate risk, but the presence of this vulnerability in critical AI infrastructure warrants proactive mitigation to prevent potential lateral movement or data leakage within secure environments.

To mitigate CVE-2025-33198, European organizations should: 1) Monitor NVIDIA communications and apply the OTA0 firmware update promptly once released, as this update is expected to address the vulnerability. 2) Restrict local access to DGX Spark systems strictly to authorized and trusted personnel, implementing strong access controls and monitoring for unusual activity. 3) Employ endpoint security solutions on systems interfacing with DGX Spark to detect potential insider threats or unauthorized access attempts. 4) Conduct regular audits of user privileges and session logs to identify and respond to suspicious behavior quickly. 5) Isolate DGX Spark environments within secure network segments to limit exposure. 6) Educate staff on the risks of local privilege misuse and enforce policies to minimize the risk of insider exploitation. These targeted actions go beyond generic advice by focusing on the specific access requirements and operational context of the DGX Spark platform.