CVE-2025-33216 - Vulnerability Details

- Buffer Size Miscalculation in NVIDIA SNAP‑4 Container Leading to Denial of Service

Description

NVIDIA SNAP-4 Container contains a vulnerability in the configuration interface where an attacker on a VM may cause an incorrect calculation of buffer size by sending crafted configurations. A successful exploit of this vulnerability may lead to crash of the SNAP service, causing denial of service of the storage service to the host.

Published: 2026-03-24

Score: 6.8 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

NVIDIA SNAP-4 Container has a bug in its configuration interface that incorrectly calculates a buffer size when receiving crafted configuration data, leading to a crash of the SNAP service. The crash results in a denial of service for the storage service that relies on SNAP. The weakness falls under the category of buffer size miscalculation and is identified as CWE‑131.

Affected Systems

The vulnerability affects NVIDIA SNAP‑4 Container systems. No specific product version information is provided in the public description, so any deployment of SNAP‑4 Container remains potentially exposed until a vendor‑issued patch or update is applied.

Risk and Exploitability

The CVSS score of 6.8 indicates a medium severity impact, and the entry is not currently listed in the CISA Known Exploited Vulnerabilities catalog. EPSS information is unavailable, making it difficult to gauge current exploitation likelihood. The likely attack vector is a local attacker within a virtual machine that can send custom configuration commands to the SNAP service. Exploit execution requires that the attacker can reach the configuration interface, which may be reachable from within the virtual machine hosting the service. A successful exploitation would interrupt the storage service for all users on the host, potentially causing operational disruption.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

NVIDIA

SNAP-4 Container

unaffected

Version	Status	Constraints
`All versions prior to SNAP-4.9.0 and SNAP-4.5.5`	affected	—

No data.

Vendor Product Confidence Versions

Nvidia

Snap-4 Container

100%

Version	Status	Scheme	Platform
`[0,4.5.5)`	affected	semver	['bluefield-3']

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Check NVIDIA support resources for a patched version of SNAP‑4 Container and apply the update as soon as it is available.
If an update is not yet available, review access controls on the SNAP configuration interface and restrict management traffic to trusted hosts only.
Monitor SNAP service logs for abnormal crashes or repeated restart patterns and investigate any suspicious configuration traffic.
Consider isolating the virtual machine running SNAP from untrusted networks to reduce exposure until a patch is deployed.

Generated by OpenCVE AI on March 24, 2026 at 21:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00007.

Exploitation none

Automatable no

Technical Impact partial

References

Link	Providers
https://nvd.nist.gov/vuln/detail/CVE-2025-33216
https://nvidia.custhelp.com/app/answers/detail/a_id/5744
https://www.cve.org/CVERecord?id=CVE-2025-33216

History

Wed, 25 Mar 2026 22:00:00 +0000

Type	Values Removed	Values Added
Title		Buffer Size Miscalculation in NVIDIA SNAP‑4 Container Leading to Denial of Service

Wed, 25 Mar 2026 12:00:00 +0000

Type	Values Removed	Values Added
First Time appeared		Nvidia Nvidia snap-4 Container
Vendors & Products		Nvidia Nvidia snap-4 Container

Tue, 24 Mar 2026 21:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Tue, 24 Mar 2026 20:30:00 +0000

Type	Values Removed	Values Added
Description		NVIDIA SNAP-4 Container contains a vulnerability in the configuration interface where an attacker on a VM may cause an incorrect calculation of buffer size by sending crafted configurations. A successful exploit of this vulnerability may lead to crash of the SNAP service, causing denial of service of the storage service to the host.
Weaknesses		CWE-131
References		https://nvd.nist.gov/vuln/detail/CVE-2025-33216 https://nvidia.custhelp.com/app/answers/detail/a_id/5744 https://www.cve.org/CVERecord?id=CVE-2025-33216
Metrics		cvssV3_1 `{'score': 6.8, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H'}`

Subscriptions

Nvidia Snap-4 Container

MITRE

Status: PUBLISHED

Assigner: nvidia

Published: 2026-03-24T20:21:46.901Z

Updated: 2026-03-24T20:55:26.724Z

Reserved: 2025-04-15T18:51:06.914Z

Link: CVE-2025-33216

Vulnrichment

Updated: 2026-03-24T20:53:32.798Z

NVD

Status : Awaiting Analysis

Published: 2026-03-24T21:16:23.903

Modified: 2026-03-25T15:41:58.280

Link: CVE-2025-33216

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-03-25T20:57:33Z

Weaknesses

CWE-131

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required Low

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object