Division-by-Zero Vulnerability in NVIDIA CUDA Toolkit for Linux and Windows
CVE-2023-25511

3.3LOW

Key Information:

Vendor: Nvidia
Status: Nvidia Cuda Toolkit
Vendor: CVE Published:; 22 April 2023

Summary

The NVIDIA CUDA Toolkit for both Linux and Windows has a critical vulnerability in the cuobjdump tool that can be exploited via a division-by-zero error. This flaw may result in a crash of the application, potentially leading to a limited denial of service for users. It is crucial for users and administrators to assess their utilization of the NVIDIA CUDA Toolkit and apply necessary patches or updates to mitigate potential risks.

Affected Version(s)

NVIDIA CUDA Toolkit All versions prior to 12.1 Update 1

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5456

CVSS V3.1

Score:

3.3

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 22, 2023
Vulnerability Reserved
Feb 7, 2023