CVE-2025-23355

MEDIUM 6.7

CVSS Score

6.7

EPSS Score

0.0%

EPSS Percentile

0th

NVIDIA Nsight Graphics for Windows contains a vulnerability in an ngfx component, where an attacker could cause a DLL highjacking attack. A successful exploit of this vulnerability may lead to code execution, escalation of privileges, data tampering, and denial of service.

CWE	CWE-427
Vendor	nvidia
Product	nsight graphics
Published	Oct 1, 2025
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for nvidia nsight graphics

Be the first to know when new medium vulnerabilities affecting nvidia nsight graphics are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

High

Privileges Required

Low

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

NVIDIA / Nsight Graphics

All versions prior to Nsight Graphics 2025.3

References

NVD ↗ CVE.org ↗ EPSS Data ↗

nvd.nist.gov: https://nvd.nist.gov/vuln/detail/CVE-2025-23355 cve.org: https://www.cve.org/CVERecord?id=CVE-2025-23355 nvidia.custhelp.com: https://nvidia.custhelp.com/app/answers/detail/a_id/5704