CVE-2025-23345_CVE-2025-23345

4.4 / 10

MEDIUM

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

Description

NVIDIA Display Driver for Windows and Linux contains a vulnerability in a video decoder, where an attacker might cause an out-of-bounds read. A successful exploit of this vulnerability might lead to information disclosure or denial of service.

Basic Information

ID CVE-2025-23345

Source nvidia

Published Oct 23, 2025 at 18:25

Modified Oct 23, 2025 at 19:02

Affected Product

Vendor NVIDIA

Product GeForce

Version All driver versions prior to 581.42

Affected Versions NVIDIA GeForce All driver versions prior to 581.42
NVIDIA NVIDIA RTX, Quadro, NVS All driver versions prior to 581.42
NVIDIA NVIDIA RTX, Quadro, NVS All driver versions prior to 573.76
NVIDIA NVIDIA RTX, Quadro, NVS All driver versions prior to 539.56
NVIDIA Tesla All driver versions prior to 581.42
NVIDIA Tesla All driver versions prior to 573.76
NVIDIA Tesla All driver versions prior to 539.56
NVIDIA GeForce All driver versions prior to 580.95.05
NVIDIA GeForce All driver versions prior to 570.195.03
NVIDIA GeForce All driver versions prior to 535.274.02
NVIDIA NVIDIA RTX, Quadro, NVS All driver versions prior to 580.95.05
NVIDIA NVIDIA RTX, Quadro, NVS All driver versions prior to 570.195.03
NVIDIA NVIDIA RTX, Quadro, NVS All driver versions prior to 535.274.02
NVIDIA Tesla All driver versions prior to 580.95.05
NVIDIA Tesla All driver versions prior to 570.195.03
NVIDIA Tesla All driver versions prior to 535.274.02
NVIDIA Guest driver 580.82.07(All versions up to and including the August 2025 release)
NVIDIA Guest driver 570.172.08(All versions prior to and including vGPU 18.4)
NVIDIA Guest driver 535.261.03(All versions prior to and including vGPU 16.11)
NVIDIA Guest driver 581.15(All versions prior to and including vGPU19.1)
NVIDIA Guest driver 573.48(All versions prior to and including vGPU 18.4)
NVIDIA Guest driver 539.41(All versions prior to and including vGPU 16.11)
NVIDIA Guest driver 580.82.07(All versions prior to and including vGPU 19.1)

CWE Classification

CWE-125

References

{
    "lastseen": "",
    "description": "NVIDIA Display Driver for Windows and Linux contains a vulnerability in a video decoder, where an attacker might cause an out-of-bounds read. A successful exploit of this vulnerability might lead to information disclosure or denial of service.",
    "published": "2025-10-23T18:25:48.962Z",
    "modified": "2025-10-23T19:02:50.583Z",
    "type": "cve",
    "title": "CVE-2025-23345",
    "source": "nvidia",
    "references": "https://nvd.nist.gov/vuln/detail/CVE-2025-23345\nhttps://www.cve.org/CVERecord?id=CVE-2025-23345\nhttps://nvidia.custhelp.com/app/answers/detail/a_id/5703",
    "id": "CVE-2025-23345",
    "bulletinFamily": "",
    "cwe": [
        "CWE-125"
    ],
    "cvelist": null,
    "sourceData": "NVIDIA GeForce All driver versions prior to 581.42\nNVIDIA NVIDIA RTX, Quadro, NVS All driver versions prior to 581.42\nNVIDIA NVIDIA RTX, Quadro, NVS All driver versions prior to 573.76\nNVIDIA NVIDIA RTX, Quadro, NVS All driver versions prior to 539.56\nNVIDIA Tesla All driver versions prior to 581.42\nNVIDIA Tesla All driver versions prior to 573.76\nNVIDIA Tesla All driver versions prior to 539.56\nNVIDIA GeForce All driver versions prior to 580.95.05\nNVIDIA GeForce All driver versions prior to 570.195.03\nNVIDIA GeForce All driver versions prior to 535.274.02\nNVIDIA NVIDIA RTX, Quadro, NVS All driver versions prior to 580.95.05\nNVIDIA NVIDIA RTX, Quadro, NVS All driver versions prior to 570.195.03\nNVIDIA NVIDIA RTX, Quadro, NVS All driver versions prior to 535.274.02\nNVIDIA Tesla All driver versions prior to 580.95.05\nNVIDIA Tesla All driver versions prior to 570.195.03\nNVIDIA Tesla All driver versions prior to 535.274.02\nNVIDIA Guest driver 580.82.07(All versions up to and including the August 2025 release)\nNVIDIA Guest driver 570.172.08(All versions prior to and including vGPU 18.4)\nNVIDIA Guest driver 535.261.03(All versions prior to and including vGPU 16.11)\nNVIDIA Guest driver 581.15(All versions prior to and including vGPU19.1)\nNVIDIA Guest driver 573.48(All versions prior to and including vGPU 18.4)\nNVIDIA Guest driver 539.41(All versions prior to and including vGPU 16.11)\nNVIDIA Guest driver 580.82.07(All versions prior to and including vGPU 19.1)",
    "sourceHref": "",
    "cvss": {
        "score": 4.4,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "GeForce",
    "version": "All driver versions prior to 581.42",
    "vendor": "NVIDIA",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}