CVE-2025-33231 Description NVIDIA Nsight Systems for Windows contains a vulnerability in the application's DLL loading mechanism where an attacker could cause an uncontrolled search path element by exploiting insecure DLL search paths. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service and information disclosure. CNA NVIDIA Corporation Published/Updated Published: 2026-01-20 Updated: 2026-01-20 CWE CWE-427: Uncontrolled Search Path Element CVSS Score: 6.7 Severity: MEDIUM Version: 3.1 Vector String: CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H Product Status Vendor: NVIDIA Product: CUDA Toolkit Platforms: Windows, Linux Affected Versions: All versions prior to CUDA Toolkit 13.1 References 1. https://nvd.nist.gov/vuln/detail/CVE-2025-33231 2. https://www.cve.org/CVERecord?id=CVE-2025-33231 3. https://nvidia.custhelp.com/app/answers/detail/a_id/5755 Authorized Data Publishers CISA-ADP