CVE-2025-23256
published 2025-09-04CVE-2025-23256: NVIDIA BlueField contains a vulnerability in the management interface, where an attacker with local access could cause incorrect authorization to modify the…
high8.7CVSS 3.1
AVLACLPRLUINSCCLIHAH
NVIDIA BlueField contains a vulnerability in the management interface, where an attacker with local access could cause incorrect authorization to modify the configuration. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, and data tampering.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nvidia | bluefield_ga | — | — |
| nvidia | bluefield_lts22 | — | — |
| nvidia | bluefield_lts23 | — | — |
| nvidia | bluefield_lts24 | — | — |