CVE-2025-33200 identifies a vulnerability in the SROOT firmware component of NVIDIA DGX Spark GB10 systems, specifically related to CWE-226: Sensitive Information in Resource Not Removed Before Reuse. This vulnerability arises because the firmware does not properly clear sensitive data from resources before they are reused, leading to potential information disclosure. An attacker with high privileges on the local system could exploit this flaw to access residual sensitive information left in memory or other resources that should have been sanitized. The vulnerability does not affect system integrity or availability, nor does it require user interaction, but it does require local privileged access, limiting the attack surface. The CVSS 3.1 base score is 2.3, indicating low severity, primarily due to the requirement for high privileges and limited impact scope. The vulnerability affects all versions of NVIDIA DGX Spark prior to the OTA0 firmware update. No patches are currently linked, and no known exploits have been reported in the wild. Given that DGX Spark systems are specialized high-performance computing platforms used mainly in AI and data-intensive research, the exposure is mostly relevant to organizations deploying these systems. The flaw could lead to leakage of sensitive computational data, intellectual property, or other confidential information processed on these platforms. The vulnerability underscores the importance of secure firmware design and proper resource sanitization in complex computing environments.

For European organizations, the primary impact of CVE-2025-33200 is the potential disclosure of sensitive information processed on NVIDIA DGX Spark systems. These platforms are often used in AI research, scientific computing, and data analytics, where confidentiality of data is critical. Exposure of residual data could lead to leakage of proprietary algorithms, research data, or personal information, potentially violating data protection regulations such as GDPR. Although the vulnerability requires high privilege local access, insider threats or compromised administrative accounts could exploit it. The low CVSS score reflects limited impact on system functionality, but the confidentiality breach risk remains significant in sensitive environments. Organizations relying on DGX Spark for critical workloads may face reputational damage or competitive disadvantage if sensitive data is disclosed. The absence of known exploits reduces immediate risk, but the specialized nature of the hardware means that affected organizations are likely to be those with advanced AI or HPC infrastructure, which are strategically important in Europe’s digital and research sectors.

1. Monitor NVIDIA’s official channels for the release of the OTA0 firmware update and apply it promptly to all DGX Spark GB10 systems. 2. Restrict and tightly control administrative and high-privilege access to DGX Spark systems to minimize the risk of local exploitation. 3. Implement strict access controls and auditing on systems hosting DGX Spark to detect and prevent unauthorized privilege escalation. 4. Use hardware and software-based security features such as secure boot and firmware integrity verification to prevent unauthorized firmware modifications. 5. Segregate DGX Spark systems within secure network zones to limit exposure to potential attackers. 6. Conduct regular security training for administrators to recognize and prevent insider threats. 7. If firmware updates are delayed, consider additional data encryption at rest and in use to reduce the impact of potential data leakage. 8. Review and enhance logging and monitoring to detect suspicious activities related to resource reuse or memory access on these systems.