CVE-2025-5324
LOWTechPowerUp GPU-Z 2.23.0 - Memory Leak
Title source: llmDescription
A vulnerability, which was classified as problematic, was found in TechPowerUp GPU-Z 2.23.0. Affected is the function sub_140001880 in the library GPU-Z.sys of the component 0x8000645C IOCTL Handler. The manipulation leads to memory leak. It is possible to launch the attack on the local host. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
References (5)
Scores
CVSS v3
3.3
EPSS
0.0003
EPSS Percentile
6.7%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Classification
CWE
CWE-401
CWE-404
Status
draft
Timeline
Published
May 29, 2025
Tracked Since
Feb 18, 2026