Description
NVIDIA Mellanox DPDK contains a vulnerability in Poll Mode Driver (PMD), where an attacker on a VM in the system might be able to cause information disclosure and denial of service on the network interface.
References (3)
Core 3
Core References
Vendor Advisory
https://nvidia.custhelp.com/app/answers/detail/a_id/5655
Various Sources
https://nvd.nist.gov/vuln/detail/CVE-2025-23259
Various Sources
https://www.cve.org/CVERecord?id=CVE-2025-23259
Scores
CVSS v3
6.5
EPSS
0.0005
EPSS Percentile
15.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-362
Status
published
Products (8)
NVIDIA/Mellanox DPDK 20.11
All versions prior to 20.11_7.8.0 LTS
NVIDIA/Mellanox DPDK 22.11
All versions prior to 22.11_2310 LTS
NVIDIA/Mellanox DPDK 22.11
All versions prior to 22.11_2410 LTS
NVIDIA/Mellanox DPDK 22.11
All versions prior to 22.11_2504.1.0
NVIDIA/Upstream DPDK
All versions prior to 22.11.10 LTS
NVIDIA/Upstream DPDK
All versions prior to 23.11.5 LTS
NVIDIA/Upstream DPDK
All versions prior to 24.11.3 LTS
NVIDIA/Upstream DPDK
All versions prior to 25.07
Published
Sep 04, 2025
Tracked Since
Feb 18, 2026