7.8
CVE-2025-23352
- EPSS 0.01%
- Veröffentlicht 23.10.2025 18:36:22
- Zuletzt bearbeitet 27.10.2025 13:20:15
- Quelle psirt@nvidia.com
- CVE-Watchlists
- Unerledigt
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause uninitialized pointer access. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung. 
Login
LoginDaten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerNVIDIA
≫
Produkt
Virtual GPU Manager
Default Statusunaffected
Version
580.82.02(All versions up to and including the August 2025 release)
Status
affected
HerstellerNVIDIA
≫
Produkt
Virtual GPU Manager
Default Statusunaffected
Version
580.82.02(All versions prior to and including vGPU 19.1)
Status
affected
HerstellerNVIDIA
≫
Produkt
Virtual GPU Manager
Default Statusunaffected
Version
570.172.07(All versions prior to and including vGPU 18.4)
Status
affected
HerstellerNVIDIA
≫
Produkt
Virtual GPU Manager
Default Statusunaffected
Version
535.261.04(All versions prior to and including vGPU 16.11)
Status
affected
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.01% | 0.02 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@nvidia.com | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
CWE-824 Access of Uninitialized Pointer
The product accesses or uses a pointer that has not been initialized.