CVE-2025-23352

High CVSS: 7.8

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause uninitialized pointer access. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.

Vendor

Product

CWE

CWE-824

Yayın Tarihi

2025-10-23 19:15:50

Güncelleme

2025-10-27 13:20:15

Source Identifier

psirt@nvidia.com

KEV Date Added

Kategoriler

CWE-824 HIGH 2025

Referanslar

https://nvd.nist.gov/vuln/detail/CVE-2025-23352 https://nvidia.custhelp.com/app/answers/detail/a_id/5703 https://www.cve.org/CVERecord?id=CVE-2025-23352