CVE-2025-23332
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-10-23

Last updated on: 2025-10-27

Assigner: NVIDIA Corporation

Description
NVIDIA Display Driver for Linux contains a vulnerability in a kernel module, where an attacker might be able to trigger a null pointer deference. A successful exploit of this vulnerability might lead to denial of service.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-10-23
Last Modified
2025-10-27
Generated
2026-06-16
AI Q&A
2025-10-23
EPSS Evaluated
2026-06-15
NVD
CVE-2025-23332
EUVD
EUVD-2025-35723
Affected Vendors & Products
Showing 3 associated CPEs
Vendor Product Version / Range
nvidia display_driver 580.95.05
nvidia display_driver 535.274.02
nvidia display_driver 570.195.03
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-476 The product dereferences a pointer that it expects to be valid but is NULL.
Attack-Flow Graph
AI Quick Actions
Instant insights powered by AI
Executive Summary

This vulnerability exists in the NVIDIA Display Driver for Linux within a kernel module. It involves a null pointer dereference that an attacker with local access and low privileges could trigger, potentially causing the system to crash or become unavailable, resulting in a denial of service (DoS). [1]

Impact Analysis

If exploited, this vulnerability can cause a denial of service (DoS) condition by crashing or making the system unavailable. It does not impact confidentiality or integrity but has a high impact on availability. [1]

Chat Assistant
Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-23332. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70
EPSS Chart