CVE-2025-23278

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Name of the Vulnerable Software and Affected Versions NVIDIA Display Driver for Windows and Linux (affected versions not specified)

Description The NVIDIA Display Driver for Windows and Linux contains a flaw where an attacker could trigger improper index validation by submitting a call with specially crafted parameters. A successful exploit of this issue may result in data tampering or a denial-of-service condition.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Improper Validation of Array Index

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-129

Related Identifiers

BDU:2025-09445

CVE-2025-23278

OPENSUSE-SU-2025:15431-1

OPENSUSE-SU-2025:15804-1

SUSE-SU-2025:03062-1

SUSE-SU-2025:03246-1

SUSE-SU-2025:03247-1

SUSE-SU-2025:03424-1

SUSE-SU-2025:20741-1

SUSE-SU-2025:20757-1

SUSE-SU-2025_03062-1

SUSE-SU-2025_03246-1

SUSE-SU-2025_03247-1

SUSE-SU-2025_03424-1

Affected Products

Nvidia Gpu Display Driver

Suse

CVE-2025-23278

Weakness Enumeration

Related Identifiers

Affected Products

References · 53