CVE-2025-23347 | THREATINT

Description

NVIDIA Project G-Assist contains a vulnerability where an attacker might be able to escalate permissions. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, and information disclosure.

PUBLISHED Reserved 2025-01-14 | Published 2025-10-23 | Updated 2025-10-23 | Assigner nvidia

HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-276 Incorrect Default Permissions

Product status

Default status

unaffected

All driver versions prior to 581.42

affected

Default status

unaffected

All driver versions prior to 581.42

affected

Default status

unaffected

All driver versions prior to 573.76

affected

Default status

unaffected

All driver versions prior to 581.42

affected

Default status

unaffected

All driver versions prior to 573.76

affected

References

nvd.nist.gov/vuln/detail/CVE-2025-23347

www.cve.org/CVERecord?id=CVE-2025-23347

nvidia.custhelp.com/app/answers/detail/a_id/5703

cve.org (CVE-2025-23347)

nvd.nist.gov (CVE-2025-23347)

Download JSON

help @ threatint.eu