CVE-2023-25510
published 2023-04-22CVE-2023-25510: NVIDIA CUDA Toolkit SDK for Linux and Windows contains a NULL pointer dereference in cuobjdump, where a local user running the tool against a malformed binary…
low3.3CVSS 3.1
AVLACLPRLUINSUCNINAL
NVIDIA CUDA Toolkit SDK for Linux and Windows contains a NULL pointer dereference in cuobjdump, where a local user running the tool against a malformed binary may cause a limited denial of service.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | nvidia-cuda-toolkit | < nvidia-cuda-toolkit 12.1.1-1 (forky) | nvidia-cuda-toolkit 12.1.1-1 (forky) |
| nvidia | cuda_toolkit | < 12.1.1 | 12.1.1 |
| nvidia | nvidia_cuda_toolkit | — | — |
CVSS provenance
nvdv3.13.3LOWCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L
osv3.3LOW