Severity
High
Analysis Summary
CVE-2025-23309 CVSS:8.2
NVIDIA Display Driver contains a vulnerability where an uncontrolled DLL loading path might lead to arbitrary denial of service, escalation of privileges, code execution, and data tampering.
CVE-2025-23282 CVSS:7
NVIDIA Display Driver for Linux contains a vulnerability where an attacker might be able to use a race condition to escalate privileges. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, and information disclosure.
CVE-2025-23280 CVSS:7
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, and information disclosure.
Impact
- Denial of Service
- Code Execution
- Privilege Escalation
- Information Disclosure
Indicators of Compromise
CVE
CVE-2025-23309
CVE-2025-23282
CVE-2025-23280
Affected Vendors
- NVIDIA
Affected Products
- NVIDIA GeForce 581.42
- NVIDIA RTX - Quadro - NVS 581.42
- NVIDIA RTX - Quadro - NVS 573.76
- NVIDIA RTX - Quadro - NVS 539.56
- NVIDIA Tesla 581.42
- NVIDIA Tesla 573.76
- NVIDIA Tesla 539.56
Remediation
Refer to NVIDIA Security Advisory for patch, upgrade, or suggested workaround information.