NVIDIA Delegated Licensing Service Exploit in Appliance Platforms
CVE-2025-23293

8.7HIGH

Key Information:

Vendor: Nvidia
Status: Dls Component Of Nvidia License System
Vendor: CVE Published:; 30 September 2025

What is CVE-2025-23293?

The NVIDIA Delegated Licensing Service across all appliance platforms contains a vulnerability that allows an attacker to perform authorized actions unexpectedly. This misconfiguration could potentially lead to information disclosure, posing a significant risk to the integrity and confidentiality of the data managed by the service. Users and organizations using affected systems should take immediate action to mitigate the risks associated with this vulnerability.

Affected Version(s)

DLS component of NVIDIA License System All All versions prior to v3.5.1 and v3.1.7

References

https://nvd.nist.gov/vuln/detail/CVE-2025-23293

https://www.cve.org/CVERecord?id=CVE-2025-23293

https://nvidia.custhelp.com/app/answers/detail/a_id/5705

CVSS V3.1

Score:

8.7

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 30, 2025
Vulnerability Reserved
Jan 14, 2025

JSON

Nvidia

What is CVE-2025-23293?

Affected Version(s)

References

CVSS V3.1

Timeline