CVE-2023-25510: Null Pointer Dereference
First published: Sat Apr 22 2023(Updated: )
NVIDIA CUDA Toolkit SDK for Linux and Windows contains a NULL pointer dereference in cuobjdump, where a local user running the tool against a malformed binary may cause a limited denial of service.
Credit: psirt@nvidia.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NVIDIA CUDA Toolkit | <12.1.1 | |
| Linux Linux kernel | ||
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this issue?
The vulnerability ID for this issue is CVE-2023-25510.
What is the severity of CVE-2023-25510?
The severity of CVE-2023-25510 is low (3.3).
What is the affected software for CVE-2023-25510?
The affected software for CVE-2023-25510 is NVIDIA CUDA Toolkit SDK for Linux and Windows up to version 12.1.1.
What is the impact of CVE-2023-25510?
The impact of CVE-2023-25510 is a limited denial of service caused by a NULL pointer dereference in cuobjdump.
Is Linux kernel or Microsoft Windows affected by CVE-2023-25510?
No, Linux kernel and Microsoft Windows are not affected by CVE-2023-25510.
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/tags
- agent/event
- agent/type
- agent/description
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- vendor/nvidia
- canonical/nvidia cuda toolkit
- vendor/linux
- canonical/linux linux kernel
- vendor/microsoft
- canonical/microsoft windows