CVE-2025-23290

August 2, 2025 invoker category_cve

CVE Details

Basic Information

Title CVE-2025-23290
Type cve
Published 2025-08-02T22:18:49.085Z
Modified 2025-08-02T22:18:49.085Z

Product Information

Vendor NVIDIA
Product GPU Display Drivers
Version R535, R570

CVSS Information

Base Score 2.5 (LOW)
Attack Vector CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N

AI Analysis

AI Description A vulnerability in NVIDIA’s vGPU software could allow information disclosure by exposing global GPU metrics influenced by other virtual machines.
AI Severity Low
AI Vendor NVIDIA
AI Product GPU Display Drivers
AI Version R535, R570

Affected Products

  • NVIDIA GPU Display Drivers R535, R570

Additional Information

CWE List CWE-200
Source nvidia

Description

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a guest could get global GPU metrics which may be influenced by work in other VMs. A successful exploit of this vulnerability might lead to information disclosure.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.