CVE-2025-23279 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7 HIGH	LOCAL	HIGH	LOW	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Awaiting analysis

This vulnerability is currently awaiting analysis.

Base Score

CVSS 3.x

EPSS Score

Percentile: 6%

Debian Releases

Debian Product

Codename

nvidia-graphics-drivers

bookworm/non-free-firmware	535.261.03-1 fixed
bullseye/non-free	vulnerable
forky/non-free-firmware	vulnerable
sid/non-free-firmware	vulnerable
trixie	no-dsa
trixie/non-free-firmware	vulnerable

nvidia-graphics-drivers-legacy-340xx

sid/non-free

vulnerable

nvidia-graphics-drivers-legacy-390xx

bullseye	ignored
bullseye/non-free	vulnerable
sid/non-free	vulnerable

nvidia-graphics-drivers-tesla

bookworm/non-free-firmware	525.147.05-15~deb12u1 fixed
sid/non-free-firmware	525.147.05-18 fixed

nvidia-graphics-drivers-tesla-418

bullseye	ignored
bullseye/non-free	vulnerable
sid/non-free	vulnerable

nvidia-graphics-drivers-tesla-450

bullseye/non-free	450.248.02-7~deb11u1 fixed
sid/non-free	450.248.02-13 fixed

nvidia-graphics-drivers-tesla-460

bullseye/non-free	460.106.00-17~deb11u1 fixed
sid/non-free	460.106.00-23 fixed

nvidia-graphics-drivers-tesla-470

bookworm	no-dsa
bookworm/non-free	vulnerable
bullseye	ignored
bullseye/non-free	vulnerable
sid/non-free	vulnerable

nvidia-graphics-drivers-tesla-535

bookworm	no-dsa
bookworm/non-free-firmware	vulnerable
forky/non-free-firmware	535.274.02-2 fixed
sid/non-free-firmware	535.274.02-2 fixed
trixie/non-free-firmware	535.274.02-1~deb13u1 fixed

nvidia-graphics-drivers-tesla-550

sid/non-free-firmware

vulnerable

nvidia-open-gpu-kernel-modules

bookworm/contrib	535.261.03-1 fixed
sid/contrib	vulnerable
trixie	no-dsa
trixie/contrib	vulnerable

openSUSE / SLES Releases

openSUSE Product

Release

nv-prefer-signed-open-driver

suse enterprise desktop 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise desktop 15 SP7	580.82.07-150700.3.21.1 fixed
suse enterprise sap 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise sap 15 SP7	580.82.07-150700.3.21.1 fixed
suse enterprise server 15 SP4	580.82.07-150400.98.1 fixed
suse enterprise server 15 SP5	580.65.06-150500.3.73.7 fixed
suse enterprise server 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise server 15 SP7	580.82.07-150700.3.21.1 fixed

nvidia-open-driver-G06-signed-64kb-devel

suse enterprise desktop 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise sap 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise server 15 SP4	580.82.07-150400.98.1 fixed
suse enterprise server 15 SP5	570.172.08-150500.3.73.7 fixed
suse enterprise server 15 SP6	580.82.07-150600.3.63.1 fixed

nvidia-open-driver-G06-signed-azure-devel

suse enterprise sap 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise server 15 SP6	580.82.07-150600.3.63.1 fixed

nvidia-open-driver-G06-signed-cuda-64kb-devel

suse enterprise desktop 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise sap 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise server 15 SP4	580.82.07-150400.98.1 fixed
suse enterprise server 15 SP5	580.65.06-150500.3.73.7 fixed
suse enterprise server 15 SP6	580.82.07-150600.3.63.1 fixed

nvidia-open-driver-G06-signed-cuda-azure-devel

suse enterprise sap 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise server 15 SP6	580.82.07-150600.3.63.1 fixed

nvidia-open-driver-G06-signed-cuda-default-devel

suse enterprise desktop 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise desktop 15 SP7	580.82.07-150700.3.21.1 fixed
suse enterprise sap 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise sap 15 SP7	580.82.07-150700.3.21.1 fixed
suse enterprise server 15 SP4	580.82.07-150400.98.1 fixed
suse enterprise server 15 SP5	580.65.06-150500.3.73.7 fixed
suse enterprise server 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise server 15 SP7	580.82.07-150700.3.21.1 fixed

nvidia-open-driver-G06-signed-default-devel

suse enterprise desktop 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise desktop 15 SP7	580.82.07-150700.3.21.1 fixed
suse enterprise sap 15 SP4	580.82.07-150400.98.1 fixed
suse enterprise sap 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise sap 15 SP7	580.82.07-150700.3.21.1 fixed
suse enterprise server 15 SP4	580.82.07-150400.98.1 fixed
suse enterprise server 15 SP5	570.172.08-150500.3.73.7 fixed
suse enterprise server 15 SP6	580.82.07-150600.3.63.1 fixed
suse enterprise server 15 SP7	580.82.07-150700.3.21.1 fixed

Common Weakness Enumeration

CWE-367 - Time-of-check Time-of-use (TOCTOU) Race Condition
The software checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check. This can cause the software to perform invalid actions when the resource is in an unexpected state.

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5670