CVE-2025-23299
published 2025-10-22CVE-2025-23299: NVIDIA Bluefield and ConnectX contain a vulnerability in the management interface that could allow a malicious actor with high privilege access to execute…
medium6.7CVSS 3.1
AVLACLPRHUINSUCHIHAH
NVIDIA Bluefield and ConnectX contain a vulnerability in the management interface that could allow a malicious actor with high privilege access to execute arbitrary code.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nvidia | bluefield_ga | — | — |
| nvidia | bluefield_lts22 | — | — |
| nvidia | bluefield_lts23 | — | — |
| nvidia | bluefield_lts24 | — | — |
| nvidia | connectx-4_lx | — | — |
| nvidia | connectx_ga | — | — |
| nvidia | connectx_lts22 | — | — |
| nvidia | connectx_lts23 | — | — |
| nvidia | connectx_lts24 | — | — |