CVE-2025-23247

MEDIUM

NVIDIA CUDA Toolkit - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2025-23247. PoCs published by SpiralBL0CK, adminlove520.

AI-analyzed exploit summary This PoC demonstrates a buffer overflow vulnerability in NVIDIA's cuobjdump tool (CVE-2025-23247) by crafting a malicious .nv_debug_source section in a CUDA binary (cubin) file. The exploit leverages an integer overflow to achieve arbitrary write control, with a focus on crashing the target for further exploitation.

Description

NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a failure to check the length of a buffer could allow a user to cause the tool to crash or execute arbitrary code by passing in a malformed ELF file. A successful exploit of this vulnerability might lead to arbitrary code execution.

Exploits (2)

nomisec WORKING POC 3 stars

by SpiralBL0CK · poc

https://github.com/SpiralBL0CK/CVE-2025-23247

View Code ZIP pw:eip

This PoC demonstrates a buffer overflow vulnerability in NVIDIA's cuobjdump tool (CVE-2025-23247) by crafting a malicious .nv_debug_source section in a CUDA binary (cubin) file. The exploit leverages an integer overflow to achieve arbitrary write control, with a focus on crashing the target for further exploitation.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: NVIDIA cuobjdump (version not specified)

No auth needed

Prerequisites: Access to a system with NVIDIA cuobjdump installed · Ability to execute the tool on a crafted cubin file

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

github SCANNER 2 stars

by adminlove520 · pythonpoc

https://github.com/adminlove520/CVE-Poc_All_in_One/tree/main/2025/CVE-2025-23247

View Code ZIP pw:eip

The repository contains a scanner for CVE-2024-21762, a Fortinet SSL VPN vulnerability, which checks for the presence of the vulnerability by sending crafted HTTP requests. It includes Python scripts to test individual hosts or lists of IPs for vulnerability status.

Classification

Scanner 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Fortinet SSL VPN

No auth needed

Prerequisites: network access to target host · SSL/TLS connectivity

MITRE ATT&CK

T1005 - Data from Local System T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 27, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory

https://nvidia.custhelp.com/app/answers/detail/a_id/5643

Third Party Advisory

https://www.talosintelligence.com/vulnerability_reports/TALOS-2025-2151

Scores

CVSS v3 4.4

EPSS 0.0026

EPSS Percentile 17.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-130

Status published

Products (1)

nvidia/cuda_toolkit < 12.9.0

Published May 27, 2025

Tracked Since Feb 18, 2026