CVE-2025-23291_CVE-2025-23291

2.4 / 10

LOW

CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:C/C:L/I:N/A:N

Description

NVIDIA Delegated Licensing Service for all appliance platforms contains a vulnerability where an User/Attacker may cause an authorized action. A successful exploit of this vulnerability may lead to information disclosure.

Basic Information

ID CVE-2025-23291

Source nvidia

Published Sep 30, 2025 at 17:54

Affected Product

Vendor NVIDIA

Product DLS component of NVIDIA License System

Version All versions prior to v3.5.1 and v3.1.7

Affected Versions NVIDIA DLS component of NVIDIA License System All versions prior to v3.5.1 and v3.1.7

CWE Classification

CWE-312

References

{
    "lastseen": "",
    "description": "NVIDIA Delegated Licensing Service for all appliance platforms contains a vulnerability where an User/Attacker may cause an authorized action. A successful exploit of this vulnerability may lead to information disclosure.",
    "published": "2025-09-30T17:54:22.801Z",
    "modified": "2025-09-30T17:54:22.801Z",
    "type": "cve",
    "title": "CVE-2025-23291",
    "source": "nvidia",
    "references": "https://nvd.nist.gov/vuln/detail/CVE-2025-23291\nhttps://www.cve.org/CVERecord?id=CVE-2025-23291\nhttps://nvidia.custhelp.com/app/answers/detail/a_id/5705",
    "id": "CVE-2025-23291",
    "bulletinFamily": "",
    "cwe": [
        "CWE-312"
    ],
    "cvelist": null,
    "sourceData": "NVIDIA DLS component of NVIDIA License System All versions prior to v3.5.1 and v3.1.7",
    "sourceHref": "",
    "cvss": {
        "score": 2.4,
        "severity": "LOW",
        "vector": "CVSS:3.1/AV:A/AC:H/PR:H/UI:R/S:C/C:L/I:N/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "DLS component of NVIDIA License System",
    "version": "All versions prior to v3.5.1 and v3.1.7",
    "vendor": "NVIDIA",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}