7.8
CVE-2025-23347
- EPSS 0.01%
- Veröffentlicht 23.10.2025 18:26:10
- Zuletzt bearbeitet 27.10.2025 13:20:15
- Quelle psirt@nvidia.com
- CVE-Watchlists
- Unerledigt
NVIDIA Project G-Assist contains a vulnerability where an attacker might be able to escalate permissions. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, and information disclosure.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
LoginDaten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerNVIDIA
≫
Produkt
GeForce
Default Statusunaffected
Version
All driver versions prior to 581.42
Status
affected
HerstellerNVIDIA
≫
Produkt
NVIDIA RTX, Quadro, NVS
Default Statusunaffected
Version
All driver versions prior to 581.42
Status
affected
HerstellerNVIDIA
≫
Produkt
NVIDIA RTX, Quadro, NVS
Default Statusunaffected
Version
All driver versions prior to 573.76
Status
affected
HerstellerNVIDIA
≫
Produkt
Tesla
Default Statusunaffected
Version
All driver versions prior to 581.42
Status
affected
HerstellerNVIDIA
≫
Produkt
Tesla
Default Statusunaffected
Version
All driver versions prior to 573.76
Status
affected
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.01% | 0.011 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@nvidia.com | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-276 Incorrect Default Permissions
During installation, installed file permissions are set to allow anyone to modify those files.