CVE-2025-23292_CVE-2025-23292

4.6 / 10

MEDIUM

CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:N/I:H/A:L

Description

NVIDIA Delegated Licensing Service for all appliance platforms contains a SQL injection vulnerability where an User/Attacker may cause an authorized action. A successful exploit of this vulnerability may lead to partial denial of service (UI component).

Basic Information

ID CVE-2025-23292

Source nvidia

Published Sep 30, 2025 at 17:55

Affected Product

Vendor NVIDIA

Product DLS component of NVIDIA License System

Version All versions prior to v3.5.1 and v3.1.7

Affected Versions NVIDIA DLS component of NVIDIA License System All versions prior to v3.5.1 and v3.1.7

CWE Classification

CWE-943

References

{
    "lastseen": "",
    "description": "NVIDIA Delegated Licensing Service for all appliance platforms contains a SQL injection vulnerability where an User/Attacker may cause an authorized action. A successful exploit of this vulnerability may lead to partial denial of service (UI component).",
    "published": "2025-09-30T17:55:02.678Z",
    "modified": "2025-09-30T17:55:02.678Z",
    "type": "cve",
    "title": "CVE-2025-23292",
    "source": "nvidia",
    "references": "https://nvd.nist.gov/vuln/detail/CVE-2025-23292\nhttps://www.cve.org/CVERecord?id=CVE-2025-23292\nhttps://nvidia.custhelp.com/app/answers/detail/a_id/5705",
    "id": "CVE-2025-23292",
    "bulletinFamily": "",
    "cwe": [
        "CWE-943"
    ],
    "cvelist": null,
    "sourceData": "NVIDIA DLS component of NVIDIA License System All versions prior to v3.5.1 and v3.1.7",
    "sourceHref": "",
    "cvss": {
        "score": 4.6,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:U/C:N/I:H/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "DLS component of NVIDIA License System",
    "version": "All versions prior to v3.5.1 and v3.1.7",
    "vendor": "NVIDIA",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}