CVE-2025-23297

High CVSS: 7.8

NVIDIA Installer for NvAPP for Windows contains a vulnerability in the FrameviewSDK installation process, where an attacker with local unprivileged access could modify files in the Frameview SDK directory. A successful exploit of this vulnerability might lead to escalation of privileges.

Vendor

Product

CWE

CWE-276

Yayın Tarihi

2025-10-01 22:15:30

Güncelleme

2025-10-02 19:11:46

Source Identifier

psirt@nvidia.com

KEV Date Added

Kategoriler

CWE-276 HIGH 2025

Referanslar

https://nvd.nist.gov/vuln/detail/CVE-2025-23297 https://nvidia.custhelp.com/app/answers/detail/a_id/5682 https://www.cve.org/CVERecord?id=CVE-2025-23297