CVE-2025-23275_CVE-2025-23275

4.2 / 10

MEDIUM

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L

Description

NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvJPEG where a local authenticated user may cause a GPU out-of-bounds write by providing certain image dimensions. A successful exploit of this vulnerability may lead to denial of service and information disclosure.

Basic Information

ID CVE-2025-23275

Source nvidia

Published Sep 24, 2025 at 13:12

Modified Sep 24, 2025 at 14:11

Affected Product

Vendor NVIDIA

Product NVIDIA CUDA Toolkit

Version All versions prior to CUDA Toolkit 13.0

Affected Versions NVIDIA NVIDIA CUDA Toolkit All versions prior to CUDA Toolkit 13.0
NVIDIA nvJPEG All versions prior to nvJPEG 13.0.0

CWE Classification

CWE-787

References

{
    "lastseen": "",
    "description": "NVIDIA CUDA Toolkit for all platforms contains a vulnerability in nvJPEG where a local authenticated user may cause a GPU out-of-bounds write by providing certain image dimensions.  A successful exploit of this vulnerability may lead to denial of service and information disclosure.",
    "published": "2025-09-24T13:12:29.449Z",
    "modified": "2025-09-24T14:11:54.046Z",
    "type": "cve",
    "title": "CVE-2025-23275",
    "source": "nvidia",
    "references": "https://nvd.nist.gov/vuln/detail/CVE-2025-23275\nhttps://www.cve.org/CVERecord?id=CVE-2025-23275\nhttps://nvidia.custhelp.com/app/answers/detail/a_id/5661",
    "id": "CVE-2025-23275",
    "bulletinFamily": "",
    "cwe": [
        "CWE-787"
    ],
    "cvelist": null,
    "sourceData": "NVIDIA NVIDIA CUDA Toolkit All versions prior to CUDA Toolkit 13.0\nNVIDIA nvJPEG All versions prior to nvJPEG 13.0.0",
    "sourceHref": "",
    "cvss": {
        "score": 4.2,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "NVIDIA CUDA Toolkit",
    "version": "All versions prior to CUDA Toolkit 13.0",
    "vendor": "NVIDIA",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}