CVE-2025-23339

CWE-121Stack-based Buffer Overflow5 documents5 sources
Severity
7.8HIGH
EPSS
0.0%
top 95.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Nvidia Cuda ToolkitNvidia Nvidia Cuda Toolkit
Timeline
PublishedSep 24

Description

NVIDIA CUDA Toolkit for all platforms contains a vulnerability in cuobjdump where an attacker may cause a stack-based buffer overflow by getting the user to run cuobjdump on a malicious ELF file. A successful exploit of this vulnerability may lead to arbitrary code execution at the privilege level of the user running cuobjdump.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages2 packages

NVDnvidia/cuda_toolkit< 13.0.0
CVEListV5nvidia/nvidia_cuda_toolkitAll versions prior to CUDA Toolkit 13.0

🔴Vulnerability Details

3
CVEList
CVE-2025-23339: NVIDIA CUDA Toolkit for all platforms contains a vulnerability in cuobjdump where an attacker may cause a stack-based buffer overflow by getting the u2025-09-24
OSV
CVE-2025-23339: NVIDIA CUDA Toolkit for all platforms contains a vulnerability in cuobjdump where an attacker may cause a stack-based buffer overflow by getting the u2025-09-24
GHSA
GHSA-68h8-653h-4qm6: NVIDIA CUDA Toolkit for all platforms contains a vulnerability in cuobjdump where an attacker may cause a stack-based buffer overflow by getting the u2025-09-24

📋Vendor Advisories

1
Debian
CVE-2025-23339: nvidia-cuda-toolkit - NVIDIA CUDA Toolkit for all platforms contains a vulnerability in cuobjdump wher...2025
CVE-2025-23339 (HIGH CVSS 7.8) | NVIDIA CUDA Toolkit for all platfor | cvebase.io