CVE-2025-23309

Summary

NVIDIA Display Driver contains a vulnerability where an uncontrolled DLL loading path might lead to arbitrary denial of service, escalation of privileges, code execution, and data tampering.

Affected Software

VendorProductVersion RangeStatus
NVIDIAGeForceAll driver versions prior to 581.42affected
NVIDIANVIDIA RTX, Quadro, NVSAll driver versions prior to 581.42affected
NVIDIANVIDIA RTX, Quadro, NVSAll driver versions prior to 573.76affected
NVIDIANVIDIA RTX, Quadro, NVSAll driver versions prior to 539.56affected
NVIDIATeslaAll driver versions prior to 581.42affected
NVIDIATeslaAll driver versions prior to 573.76affected
NVIDIATeslaAll driver versions prior to 539.56affected

Weaknesses

  • CWE-427: CWE-427 Uncontrolled Search Path Element

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References