7.1
CVE-2025-23275
- EPSS 0.02%
- Veröffentlicht 24.09.2025 14:15:47
- Zuletzt bearbeitet 06.10.2025 14:51:06
- Quelle psirt@nvidia.com
- CVE-Watchlists
- Unerledigt
NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvJPEG where a local authenticated user may cause a GPU out-of-bounds write by providing certain image dimensions. A successful exploit of this vulnerability may lead to denial of service and information disclosure.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Nvidia ≫ Cuda Toolkit Version < 13.0.0
Nvidia ≫ Nvjpeg Version-
Linux ≫ Linux Kernel Version-
Microsoft ≫ Windows Version-
Nvidia ≫ Driveos Version-
Nvidia ≫ Linux For Tegra Version-
Microsoft ≫ Windows Version-
Nvidia ≫ Driveos Version-
Nvidia ≫ Linux For Tegra Version-
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
Login| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.02% | 0.037 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.1 | 1.8 | 5.2 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
|
| psirt@nvidia.com | 4.2 | 0.8 | 3.4 |
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L
|
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.