Primary

Context

NVIDIA DGX Spark Privilege Escalation Vulnerability Allowing Access to SoC Protected Areas

Vulnerability

A vulnerability has been identified in NVIDIA DGX Spark GB10, specifically within the SROOT component. This vulnerability allows an attacker with privileged access to reach areas of the System on Chip (SoC) that are normally protected. Exploiting this vulnerability could result in various impacts, including unauthorized code execution, access to sensitive information, alteration of data, disruption of services, or unauthorized escalation of privileges.

Impact

Successful exploitation could lead to unauthorized code execution, access to sensitive information, unauthorized data modification, disruption of services, or unauthorized privilege escalation.

Remediation

Users are advised to download and install the latest version of NVIDIA DGX OS from the NVIDIA DGX site.

Added: Nov 25, 2025, 6:31 PM

Updated: Nov 25, 2025, 10:50 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

7.7

relevance

1.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

3.3

remediation

7.7

relevance

1.1

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NVIDIA DGX Spark Privilege Escalation Vulnerability Allowing Access to SoC Protected Areas

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating