NVIDIA Linux Kernel Driver DoS via NPE
CVE-2025-23300 Published on October 23, 2025

NVIDIA Display Driver for Linux contains a vulnerability in the kernel driver, where a user could cause a null pointer dereference by allocating a specific memory resource. A successful exploit of this vulnerability might lead to denial of service.

NVD

Vulnerability Analysis

CVE-2025-23300 is exploitable with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. The potential impact of an exploit of this vulnerability is considered to have no impact on confidentiality and integrity, and a high impact on availability.

Attack Vector:

LOCAL

Attack Complexity:

LOW

Privileges Required:

LOW

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

NONE

Integrity Impact:

NONE

Availability Impact:

HIGH

Weakness Type

NULL Pointer Dereference

A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit. NULL pointer dereference issues can occur through a number of flaws, including race conditions, and simple programming omissions.

Products Associated with CVE-2025-23300

Want to know whenever a new CVE is published for NVIDIA products? stack.watch will email you.

NVIDIA Virtual Gpu Manager

NVIDIA Geforce

NVIDIA Tesla

Affected Versions

NVIDIA Virtual GPU Manager:

Version 580.82.02(All versions up to and including the August 2025 release) is affected.

NVIDIA Virtual GPU Manager:

Version 580.82.02(All versions prior to and including vGPU 19.1) is affected.

NVIDIA Virtual GPU Manager:

Version 570.172.07(All versions prior to and including vGPU 18.4) is affected.

NVIDIA Virtual GPU Manager:

Version 535.261.04(All versions prior to and including vGPU 16.11) is affected.

NVIDIA GeForce:

Version All driver versions prior to 580.95.05 is affected.

NVIDIA GeForce:

Version All driver versions prior to 570.195.03 is affected.

NVIDIA GeForce:

Version All driver versions prior to 535.274.02 is affected.

NVIDIA RTX, Quadro, NVS:

Version All driver versions prior to 580.95.05 is affected.

NVIDIA RTX, Quadro, NVS:

Version All driver versions prior to 570.195.03 is affected.

NVIDIA RTX, Quadro, NVS:

Version All driver versions prior to 535.274.02 is affected.

NVIDIA Tesla:

Version All driver versions prior to 580.95.05 is affected.

NVIDIA Tesla:

Version All driver versions prior to 570.195.03 is affected.

NVIDIA Tesla:

Version All driver versions prior to 535.274.02 is affected.

NVIDIA Guest driver:

Version 580.82.07(All versions prior to and including vGPU 19.1) is affected.

NVIDIA Guest driver:

Version 580.82.07(All versions up to and including the August 2025 release) is affected.

NVIDIA Guest driver:

Version 570.172.08(All versions prior to and including vGPU 18.4) is affected.

NVIDIA Guest driver:

Version 535.261.03(All versions prior to and including vGPU 16.11) is affected.

Exploit Probability

EPSS

0.03%

Percentile

8.75%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

NVIDIA Linux Kernel Driver DoS via NPECVE-2025-23300 Published on October 23, 2025

Vulnerability Analysis

Weakness Type

NULL Pointer Dereference

Products Associated with CVE-2025-23300

Affected Versions

Exploit Probability

NVIDIA Linux Kernel Driver DoS via NPE
CVE-2025-23300 Published on October 23, 2025