CVSS: 2.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23290
https://notcve.org/view.php?id=CVE-2025-23290
02 Aug 2025 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a guest could get global GPU metrics which may be influenced by work in other VMs. A successful exploit of this vulnerability might lead to information disclosure. El software NVIDIA vGPU contiene una vulnerabilidad en el Administrador de GPU Virtual (VM), donde un invitado podría obtener métricas globales de la GPU que podrían verse influenciadas por el trabajo en otras máquinas virtuales. Una explotación exitosa de esta vulner... • https://nvidia.custhelp.com/app/answers/detail/a_id/5670 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23285
https://notcve.org/view.php?id=CVE-2025-23285
02 Aug 2025 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where it allows a guest to access global resources. A successful exploit of this vulnerability might lead to denial of service. El software NVIDIA vGPU contiene una vulnerabilidad en el Administrador de GPU Virtual que permite a un invitado acceder a recursos globales. Una explotación exitosa de esta vulnerabilidad podría provocar una denegación de servicio. • https://nvidia.custhelp.com/app/answers/detail/a_id/5670 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23284
https://notcve.org/view.php?id=CVE-2025-23284
02 Aug 2025 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause a stack buffer overflow. A successful exploit of this vulnerability might lead to code execution, denial of service, information disclosure, or data tampering. El software NVIDIA vGPU contiene una vulnerabilidad en el Administrador de GPU Virtual, donde un invitado malicioso podría causar un desbordamiento del búfer de pila. Una explotación exitosa de esta vulnerabilidad podría provocar ejecución de... • https://nvidia.custhelp.com/app/answers/detail/a_id/5670 • CWE-121: Stack-based Buffer Overflow •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23283
https://notcve.org/view.php?id=CVE-2025-23283
02 Aug 2025 — NVIDIA vGPU software for Linux-style hypervisors contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause stack buffer overflow. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering. El software NVIDIA vGPU para hipervisores tipo Linux contiene una vulnerabilidad en el Administrador de GPU Virtual (VAM), donde un invitado malicioso podría causar un desbordamiento del búf... • https://nvidia.custhelp.com/app/answers/detail/a_id/5670 • CWE-121: Stack-based Buffer Overflow •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23288
https://notcve.org/view.php?id=CVE-2025-23288
02 Aug 2025 — NVIDIA GPU Display Driver for Windows contains a vulnerability where an attacker may cause an exposure of sensitive system information with local unprivileged system access. A successful exploit of this vulnerability may lead to Information disclosure. El controlador de pantalla GPU NVIDIA para Windows contiene una vulnerabilidad que permite a un atacante exponer información confidencial del sistema mediante acceso local sin privilegios. Aprovechar esta vulnerabilidad podría provocar la divulgación de infor... • https://nvidia.custhelp.com/app/answers/detail/a_id/5670 • CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere •
CVSS: 3.3EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23287
https://notcve.org/view.php?id=CVE-2025-23287
02 Aug 2025 — NVIDIA GPU Display Driver for Windows contains a vulnerability where an attacker may access sensitive system-level information. A successful exploit of this vulnerability may lead to Information disclosure. El controlador de pantalla GPU NVIDIA para Windows contiene una vulnerabilidad que permite a un atacante acceder a información confidencial del sistema. Aprovechar esta vulnerabilidad podría provocar la divulgación de información. • https://nvidia.custhelp.com/app/answers/detail/a_id/5670 • CWE-497: Exposure of Sensitive System Information to an Unauthorized Control Sphere •
CVSS: 4.4EPSS: 0%CPEs: 2EXPL: 0CVE-2025-23286
https://notcve.org/view.php?id=CVE-2025-23286
02 Aug 2025 — NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where an attacker could read invalid memory. A successful exploit of this vulnerability might lead to information disclosure. El controlador de pantalla GPU NVIDIA para Windows y Linux contiene una vulnerabilidad que permite a un atacante leer memoria no válida. Explotar esta vulnerabilidad podría resultar en la divulgación de información. • https://nvidia.custhelp.com/app/answers/detail/a_id/5670 • CWE-125: Out-of-bounds Read •
CVSS: 7.0EPSS: 0%CPEs: 1EXPL: 0CVE-2025-23281
https://notcve.org/view.php?id=CVE-2025-23281
02 Aug 2025 — NVIDIA GPU Display Driver for Windows contains a vulnerability where an attacker with local unprivileged access that can win a race condition might be able to trigger a use-after-free error. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or information disclosure. El controlador de pantalla GPU NVIDIA para Windows contiene una vulnerabilidad que permite a un atacante con acceso local sin privilegios, capaz de ganar una co... • https://nvidia.custhelp.com/app/answers/detail/a_id/5670 • CWE-416: Use After Free •
CVSS: 7.0EPSS: 0%CPEs: 2EXPL: 0CVE-2025-23279
https://notcve.org/view.php?id=CVE-2025-23279
02 Aug 2025 — NVIDIA .run Installer for Linux and Solaris contains a vulnerability where an attacker could use a race condition to escalate privileges. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, denial of service, or data tampering. El instalador NVIDIA .run para Linux y Solaris contiene una vulnerabilidad que permite a un atacante usar una condición de ejecución para escalar privilegios. Una explotación exitosa de esta vulnerabilidad podría ... • https://nvidia.custhelp.com/app/answers/detail/a_id/5670 • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2025-23278
https://notcve.org/view.php?id=CVE-2025-23278
02 Aug 2025 — NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker might cause an improper index validation by issuing a call with crafted parameters. A successful exploit of this vulnerability might lead to data tampering or denial of service. El controlador de pantalla NVIDIA para Windows y Linux contiene una vulnerabilidad que permite a un atacante provocar una validación de índice incorrecta al ejecutar una llamada con parámetros manipulados. Una explotación exitosa de esta vulnerabi... • https://nvidia.custhelp.com/app/answers/detail/a_id/5670 • CWE-129: Improper Validation of Array Index •