Base Score

MEDIUM4.2

CVE-2025-23302

NVIDIA HGX and DGX contain a vulnerability where a misconfiguration of the LS10 could enable an attacker to set an unsafe debug access level. A successful exploit of this vulnerability might lead to denial of service.

VectorLOCAL

Published Bypsirt@nvidia.com

Published DateSep 04, 2025, 16:15

Weakness Type (CWE):CWE-1244

CVSS Metrics

Base Score

4.2

Vector String

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:L

Base Severity

MEDIUM

Version

3.1

Attack Vector (AV)

LOCAL

Attack Complexity (AC)

HIGH

Privileges Required (PR)

LOW

User Interaction (UI)

NONE

Scope (S)

CHANGED

Confidentiality (C)

NONE

Integrity (I)

LOW

Availability (A)

LOW

References

https://nvd.nist.gov/vuln/detail/CVE-2025-23302
https://nvidia.custhelp.com/app/answers/detail/a_id/5674
https://www.cve.org/CVERecord?id=CVE-2025-23302

Base Score

MEDIUM4.2

Weakness Type (CWE):CWE-1244

CVSS Metrics

Base Score

4.2

Vector String

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:L

Base Severity

MEDIUM

Version

3.1

Attack Vector (AV)

LOCAL

Attack Complexity (AC)

HIGH

Privileges Required (PR)

LOW

User Interaction (UI)

NONE

Scope (S)

CHANGED

Confidentiality (C)

NONE

Integrity (I)

LOW

Availability (A)

LOW