DLL Hijacking Vulnerability in NVIDIA Nsight Graphics for Windows
CVE-2025-23355

6.7MEDIUM

Key Information:

Vendor

Nvidia

Vendor
CVE Published:
1 October 2025

What is CVE-2025-23355?

NVIDIA Nsight Graphics for Windows contains a vulnerability in its ngfx component that exposes the software to potential DLL hijacking attacks. If exploited, this vulnerability may allow an attacker to execute arbitrary code, escalate privileges, tamper with data, and even cause denial of service. This significantly compromises the integrity and security of the affected system.

Affected Version(s)

Nsight Graphics Windows All versions prior to Nsight Graphics 2025.3

References

CVSS V3.1

Score:
6.7
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-23355 : DLL Hijacking Vulnerability in NVIDIA Nsight Graphics for Windows