CVE-2025-23291

NVIDIA Delegated Licensing Service for all appliance platforms contains a vulnerability where an User/Attacker may cause an authorized action. A successful exploit of this vulnerability may lead to information disclosure.

CVSS v3 2.4 LOW

2.4^/10

CVSS v3 : LOW

V3 Legend

Vector :

Exploitability : 0.7 / Impact : 1.4

Attack Vector ADJACENT_NETWORK

Attack Complexity HIGH

Privileges Required HIGH

User Interaction REQUIRED

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope CHANGED

References

Link	Resource
https://nvd.nist.gov/vuln/detail/CVE-2025-23291
https://nvidia.custhelp.com/app/answers/detail/a_id/5705
https://www.cve.org/CVERecord?id=CVE-2025-23291

Configurations

No configuration.

History

15 Apr 2026, 00:35

Type	Values Removed	Values Added
Summary		(es) El Servicio de Licencias Delegadas de NVIDIA para todas las plataformas de dispositivos contiene una vulnerabilidad donde un Usuario/atacante puede causar una acción autorizada. Un exploit exitoso de esta vulnerabilidad puede conducir a la revelación de información.

30 Sep 2025, 18:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-09-30 18:15

Updated : 2026-04-15 00:35

NVD link : CVE-2025-23291

Mitre link : CVE-2025-23291

CVE.ORG link : CVE-2025-23291

JSON object : View

Products Affected

No product.

CWE

CWE-312

Cleartext Storage of Sensitive Information

2.4 /10