Use-After-Free Vulnerability in NVIDIA GPU Display Driver for Windows
CVE-2025-23281

7HIGH

Key Information:

Vendor: Nvidia
Status: Gpu Display Drivers
Vendor: CVE Published:; 2 August 2025

What is CVE-2025-23281?

The NVIDIA GPU Display Driver for Windows is susceptible to a use-after-free vulnerability that may be exploited by an attacker with local unprivileged access. When a race condition occurs, it could allow the attacker to execute arbitrary code, escalate privileges, tamper with data, cause a denial of service, or leak sensitive information. Proper mitigation is crucial to safeguard against potential exploitations.

Affected Version(s)

GPU Display Drivers R535, R570, R575

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5670

CVSS V3.1

Score:

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 2, 2025
Vulnerability Reserved
Jan 14, 2025

Nvidia

What is CVE-2025-23281?

Affected Version(s)

References

CVSS V3.1

Timeline