CVE-2025-23286

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where an attacker could read invalid memory. A successful exploit of this vulnerability might lead to information disclosure.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.4 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
nvidiaCNA
4.4 MEDIUM
LOCAL
LOW
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Debian logo
Debian Releases
Debian Product
Codename
nvidia-graphics-drivers
bullseye/non-free
vulnerable
bookworm
no-dsa
bookworm/non-free-firmware
vulnerable
bullseye
ignored
sid/non-free-firmware
vulnerable
trixie/non-free-firmware
vulnerable
nvidia-graphics-drivers-legacy-340xx
sid/non-free
vulnerable
bookworm
no-dsa
bullseye
ignored
nvidia-graphics-drivers-legacy-390xx
bullseye/non-free
vulnerable
bookworm
no-dsa
sid/non-free
vulnerable
bullseye
ignored
nvidia-graphics-drivers-tesla
bookworm/non-free-firmware
525.147.05-15~deb12u1
fixed
bullseye
ignored
sid/non-free-firmware
525.147.05-16
fixed
bookworm
no-dsa
nvidia-graphics-drivers-tesla-418
bullseye/non-free
vulnerable
bookworm
no-dsa
sid/non-free
vulnerable
bullseye
ignored
nvidia-graphics-drivers-tesla-450
bullseye/non-free
450.248.02-7~deb11u1
fixed
bookworm
no-dsa
sid/non-free
450.248.02-11
fixed
bullseye
ignored
nvidia-graphics-drivers-tesla-460
bullseye/non-free
460.106.00-17~deb11u1
fixed
bookworm
no-dsa
sid/non-free
460.106.00-21
fixed
bullseye
ignored
nvidia-graphics-drivers-tesla-470
bullseye/non-free
vulnerable
bookworm
no-dsa
bookworm/non-free
vulnerable
bullseye
ignored
sid/non-free
vulnerable
nvidia-graphics-drivers-tesla-535
bookworm/non-free-firmware
vulnerable
bullseye
ignored
sid/non-free-firmware
vulnerable
trixie/non-free-firmware
vulnerable
bookworm
no-dsa
nvidia-graphics-drivers-tesla-550
sid/non-free-firmware
vulnerable
bookworm
no-dsa
bullseye
ignored
nvidia-open-gpu-kernel-modules
bookworm/contrib
vulnerable
bullseye
ignored
sid/contrib
vulnerable
trixie/contrib
vulnerable
bookworm
no-dsa
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
Common Weakness Enumeration
References
https://nvidia.custhelp.com/app/answers/detail/a_id/5670