CVE-2025-23344

CWE-78OS Command Injection3 documents3 sources
Severity
9.8CRITICAL
EPSS
0.0%
top 86.98%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Nvidia NvdebugNvidia Nvdebug Tool
Timeline
PublishedSep 9

Description

The NVIDIA NVDebug tool contains a vulnerability that may allow an actor to run code on the platform host as a non-privileged user. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure and data tampering.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:HExploitability: 1.3 | Impact: 5.9

Affected Packages2 packages

CVEListV5nvidia/nvdebug_toolAll versions prior to 1.7.0
NVDnvidia/nvdebug< 1.7.0

🔴Vulnerability Details

2
GHSA
GHSA-wrj9-825v-rrc7: The NVIDIA NVDebug tool contains a vulnerability that may allow an actor to run code on the platform host as a non-privileged user2025-09-09
CVEList
CVE-2025-23344: The NVIDIA NVDebug tool contains a vulnerability that may allow an actor to run code on the platform host as a non-privileged user2025-09-09