What is CVE-2025-33220?

CVE-2025-33220 is a high-severity vulnerability in Nvidia Geforce, classified under Use After Free. CVSS score: 7.8/10. Published 2026-01-28.

How severe is CVE-2025-33220?

High severity. CVSS v3 base score is 7.8 out of 10.

Use After Free in Nvidia Geforce

CVE-2025-33220

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause heap memory access after the memory is freed. A successful exploit of this vulnerability might lead to code execution, escalation…

Vulnerability class: Use-After-Free

EPSS: 0.000 (1.1th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Nvidia Geforce — versions All driver versions prior to 590.48.01, All driver versions prior to 580.126.09, All driver versions prior to 570.211.01
Nvidia Rtx Pro, Rtx, Quadro — versions All driver versions prior to 590.48.01, All driver versions prior to 580.126.09, All driver versions prior to 570.211.01
Nvidia Tesla — versions All driver versions prior to 590.48.01, All driver versions prior to 580.126.09, All driver versions prior to 570.211.01
Nvidia Virtual Gpu Manager — versions 580.105.06(All versions prior to and including vGPU software 19.3), 570.195.02(All versions prior to and including vGPU software 18.5), 535.274.03(All versions prior to and including vGPU software 16.13)

Weakness classification (CWE)

CWE-416 — Use After Free

References

Frequently asked questions

What is CVE-2025-33220?: CVE-2025-33220 is a high-severity vulnerability in Nvidia Geforce, classified under Use After Free. CVSS score: 7.8/10. Published 2026-01-28.
How severe is CVE-2025-33220?: High severity. CVSS v3 base score is 7.8 out of 10.