CVE-2025-23346

CWE-476 — NULL Pointer Dereference6 documents6 sources

Severity

3.3LOW

EPSS

0.0%

top 94.05%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nvidia Cuda Toolkit Nvidia Nvidia Cuda Toolkit

Timeline

PublishedSep 24

Description

NVIDIA CUDA Toolkit contains a vulnerability in cuobjdump, where an unprivileged user can cause a NULL pointer dereference. A successful exploit of this vulnerability may lead to a limited denial of service.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:LExploitability: 1.8 | Impact: 1.4

Affected Packages2 packages

▶NVDnvidia/cuda_toolkit< 13.0.0

▶CVEListV5nvidia/nvidia_cuda_toolkitAll versions prior to CUDA Toolkit 13.0

🔴Vulnerability Details

GHSA

GHSA-f38c-296g-j6x2: NVIDIA CUDA Toolkit contains a vulnerability in cuobjdump, where an unprivileged user can cause a NULL pointer dereference↗2025-09-24

▶

OSV

CVE-2025-23346: NVIDIA CUDA Toolkit contains a vulnerability in cuobjdump, where an unprivileged user can cause a NULL pointer dereference↗2025-09-24

▶

CVEList

CVE-2025-23346: NVIDIA CUDA Toolkit contains a vulnerability in cuobjdump, where an unprivileged user can cause a NULL pointer dereference↗2025-09-24

▶

📋Vendor Advisories

Debian

CVE-2025-23346: nvidia-cuda-toolkit - NVIDIA CUDA Toolkit contains a vulnerability in cuobjdump, where an unprivileged...↗2025

▶