CVE-2025-23330

CWE-476NULL Pointer Dereference6 documents6 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 88.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Nvidia GeforceNvidia Guest DriverNvidia Tesla
Timeline
PublishedOct 23

Description

NVIDIA Display Driver for Linux contains a vulnerability where an attacker might be able to trigger a null pointer dereference. A successful exploit of this vulnerability might lead to denial of service.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages7 packages

Debiannvidia-graphics-drivers-tesla< 525.147.05-6
Debiannvidia-graphics-drivers-tesla-450< 450.248.02-4
Debiannvidia-graphics-drivers-tesla-460< 460.106.00-3
Debiannvidia-graphics-drivers-tesla-535< 535.274.02-1~deb13u1+1
CVEListV5nvidia/guest_driver4 versions+3

🔴Vulnerability Details

3
CVEList
CVE-2025-23330: NVIDIA Display Driver for Linux contains a vulnerability where an attacker might be able to trigger a null pointer dereference2025-10-23
GHSA
GHSA-6mjj-rq8q-jv56: NVIDIA Display Driver for Linux contains a vulnerability where an attacker might be able to trigger a null pointer dereference2025-10-23
OSV
CVE-2025-23330: NVIDIA Display Driver for Linux contains a vulnerability where an attacker might be able to trigger a null pointer dereference2025-10-23

📋Vendor Advisories

2
Red Hat
nvidia-display-driver: NVIDIA Display Driver null pointer dereference2025-10-23
Debian
CVE-2025-23330: nvidia-graphics-drivers - NVIDIA Display Driver for Linux contains a vulnerability where an attacker might...2025
CVE-2025-23330 (MEDIUM CVSS 5.5) | NVIDIA Display Driver for Linux con | cvebase.io