Divide by Zero Error in NVIDIA CUDA Toolkit's nvJPEG Component
CVE-2025-23273

2.5LOW

Key Information:

Vendor

Nvidia
Status
Nvidia Cuda Toolkit
Nvjpeg
Vendor
CVE Published:
24 September 2025

What is CVE-2025-23273?

The NVIDIA CUDA Toolkit contains a vulnerability within the nvJPEG component, allowing a local authenticated user to trigger a divide by zero error through the submission of a specially crafted JPEG file. This exploit could lead to a denial of service, affecting the availability of the toolkit's functionality.

Affected Version(s)

NVIDIA CUDA Toolkit Windows All versions prior to CUDA Toolkit 13.0

nvJPEG Linux x86_64 All versions prior to nvJPEG 13.0.0

References

https://nvd.nist.gov/vuln/detail/CVE-2025-23273
https://www.cve.org/CVERecord?id=CVE-2025-23273
https://nvidia.custhelp.com/app/answers/detail/a_id/5661

CVSS V3.1

Score:
2.5
Severity:
LOW
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-23273 : Divide by Zero Error in NVIDIA CUDA Toolkit's nvJPEG Component