CVE-2025-23339

LOW

Nvidia Cuda Toolkit < 13.0.0 - Stack Buffer Overflow

Title source: rule

Description

NVIDIA CUDA Toolkit for all platforms contains a vulnerability in cuobjdump where an attacker may cause a stack-based buffer overflow by getting the user to run cuobjdump on a malicious ELF file. A successful exploit of this vulnerability may lead to arbitrary code execution at the privilege level of the user running cuobjdump.

Exploits (1)

nomisec WORKING POC
by SpiralBL0CK · poc
https://github.com/SpiralBL0CK/ce-for-CVE-2025-23339

References (4)

Scores

CVSS v3 3.3
EPSS 0.0002
EPSS Percentile 5.5%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

Details

CWE
CWE-121
Status published
Products (1)
nvidia/cuda_toolkit < 13.0.0
Published Sep 24, 2025
Tracked Since Feb 18, 2026