Memory Allocation Flaw in NVIDIA Jetson Linux and IGX OS
CVE-2025-33177

5.5MEDIUM

Key Information:

Vendor: Nvidia
Status: Jetson Orin Series; Jetson Thor Series; Igx Orin
Vendor: CVE Published:; 14 October 2025

What is CVE-2025-33177?

NVIDIA Jetson Linux and IGX OS are susceptible to a memory management vulnerability due to improper tracking of memory allocations in the NvMap component. This flaw allows local attackers to exploit the issue, potentially causing memory over-allocation. Exploitation of this vulnerability could lead to service disruptions, as it may result in a denial of service, affecting the availability and performance of the affected systems.

Affected Version(s)

IGX Orin Linux IGX 1.1.2 and earlier

Jetson Orin Series Linux 35.6.2 and earlier

Jetson Orin Series Linux 36.4.4 and earlier

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5716

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 14, 2025
Vulnerability Reserved
Apr 15, 2025

JSON

Nvidia

What is CVE-2025-33177?

Affected Version(s)

References

CVSS V3.1

Timeline