CVE-2023-25517

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a guest OS may be able to control resources for which it is not authorized, which may lead to information disclosure and data tampering.

Published: Jul 4, 2023
Updated: Jul 13, 2023
CVE: CVE-2023-25517
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.1
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
nvidia / gpu_display_driver	-	11.13
nvidia / gpu_display_driver	13.0	13.8
nvidia / gpu_display_driver	15.0	15.3

https://nvidia.custhelp.com/app/answers/detail/a_id/5468

Vulnerability Database

289,784

CVE-2023-25517