CVE-2025-23261_CVE-2025-23261

5.5 / 10

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Description

NVIDIA Cumulus Linux and NVOS products contain a vulnerability, where hashed user passwords are not properly suppressed in log files, potentially disclosing information to unauthorized users.

Basic Information

ID CVE-2025-23261

Source nvidia

Published Sep 4, 2025 at 15:52

Affected Product

Vendor NVIDIA

Product NVOS

Version NVOS 25.02.21xx, 25.02.22xx, 25.02.23xx

Affected Versions NVIDIA NVOS NVOS 25.02.21xx, 25.02.22xx, 25.02.23xx
NVIDIA Cumulus Linux Cumulus Linux 5.12, 5.11, 5.10, 5.9 and older
NVIDIA NVOS NVOS 25.02.3xxx

CWE Classification

CWE-532

References

{
    "lastseen": "",
    "description": "NVIDIA Cumulus Linux and NVOS products contain a vulnerability, where hashed user passwords are not properly suppressed in log files, potentially disclosing information to unauthorized users.",
    "published": "2025-09-04T15:52:20.450Z",
    "modified": "2025-09-04T15:52:20.450Z",
    "type": "cve",
    "title": "CVE-2025-23261",
    "source": "nvidia",
    "references": "https://nvd.nist.gov/vuln/detail/CVE-2025-23261\nhttps://www.cve.org/CVERecord?id=CVE-2025-23261\nhttps://nvidia.custhelp.com/app/answers/detail/a_id/5655",
    "id": "CVE-2025-23261",
    "bulletinFamily": "",
    "cwe": [
        "CWE-532"
    ],
    "cvelist": null,
    "sourceData": "NVIDIA NVOS NVOS 25.02.21xx,  25.02.22xx,  25.02.23xx\nNVIDIA Cumulus Linux Cumulus Linux 5.12, 5.11, 5.10, 5.9 and older\nNVIDIA NVOS NVOS 25.02.3xxx",
    "sourceHref": "",
    "cvss": {
        "score": 5.5,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "NVOS",
    "version": "NVOS 25.02.21xx,  25.02.22xx,  25.02.23xx",
    "vendor": "NVIDIA",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}