CVE-2025-23302

Summary

NVIDIA HGX and DGX contain a vulnerability where a misconfiguration of the LS10 could enable an attacker to set an unsafe debug access level. A successful exploit of this vulnerability might lead to denial of service.

Affected Software

VendorProductVersion RangeStatus
NVIDIAHGX, DGX HopperAll versions prior to and including 1.7.1affected
NVIDIAHGX, DGX BlackwellAll versions prior to and including 1.2.0affected

Weaknesses

  • CWE-1244: CWE-1244 Internal Asset Exposed to Unsafe Debug Access Level or State

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References