CVE-2025-23332
Unknown Unknown - Not Provided

BaseFortify

Vulnerability report for CVE-2025-23332, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2025-10-23

Last updated on: 2025-10-27

Assigner: NVIDIA Corporation

Description

NVIDIA Display Driver for Linux contains a vulnerability in a kernel module, where an attacker might be able to trigger a null pointer deference. A successful exploit of this vulnerability might lead to denial of service.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2025-10-23
Last Modified
2025-10-27
Generated
2026-07-06
AI Q&A
2025-10-23
EPSS Evaluated
2026-07-05
NVD
EUVD

Affected Vendors & Products

Showing 3 associated CPEs
Vendor Product Version / Range
nvidia display_driver 580.95.05
nvidia display_driver 535.274.02
nvidia display_driver 570.195.03

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-476 The product dereferences a pointer that it expects to be valid but is NULL.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability exists in the NVIDIA Display Driver for Linux within a kernel module. It involves a null pointer dereference that an attacker with local access and low privileges could trigger, potentially causing the system to crash or become unavailable, resulting in a denial of service (DoS). [1]

Impact Analysis

If exploited, this vulnerability can cause a denial of service (DoS) condition by crashing or making the system unavailable. It does not impact confidentiality or integrity but has a high impact on availability. [1]

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2025-23332. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart