CVE-2025-23282

Published: Oct 10, 2025

Modified: Feb 26, 2026

PUBLISHED

CVSS v3.1

7.0

HIGH

Description

NVIDIA Display Driver for Linux contains a vulnerability where an attacker might be able to use a race condition to escalate privileges. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, and information disclosure.

Vendor	Product	Versions
NVIDIA	Virtual GPU Manager	affected `580.82.02(All versions up to and including the August 2025 release)`
NVIDIA	Virtual GPU Manager	affected `580.82.02(All versions prior to and including vGPU 19.1)`
NVIDIA	Virtual GPU Manager	affected `570.172.07(All versions prior to and including vGPU 18.4)`
NVIDIA	Virtual GPU Manager	affected `535.261.04(All versions prior to and including vGPU 16.11)`
NVIDIA	GeForce	affected `All driver versions prior to 580.95.05`
NVIDIA	GeForce	affected `All driver versions prior to 570.195.03`
NVIDIA	GeForce	affected `All driver versions prior to 535.274.02`
NVIDIA	NVIDIA RTX, Quadro, NVS	affected `All driver versions prior to 580.95.05`
NVIDIA	NVIDIA RTX, Quadro, NVS	affected `All driver versions prior to 570.195.03`
NVIDIA	NVIDIA RTX, Quadro, NVS	affected `All driver versions prior to 535.274.02`
NVIDIA	Tesla	affected `All driver versions prior to 580.95.05`
NVIDIA	Tesla	affected `All driver versions prior to 570.195.03`
NVIDIA	Tesla	affected `All driver versions prior to 535.274.02`
NVIDIA	Guest driver	affected `580.82.07(All versions prior to and including vGPU 19.1)`
NVIDIA	Guest driver	affected `580.82.07(All versions up to and including the August 2025 release)`
NVIDIA	Guest driver	affected `570.172.08(All versions prior to and including vGPU 18.4)`
NVIDIA	Guest driver	affected `535.261.03(All versions prior to and including vGPU 16.11)`