Security Advisory

NVIDIA Family Security Update Advisory

  • Aug 06 2025
NVIDIA Family Security Update Advisory

Overview

 

We have released security updates to fix vulnerabilities in the NVIDIA family of products. Users of affected products are advised to update to the latest version.
 

 

Affected Products

 

Cve-2025-23276, cve-2025-23277, cve-2025-23278, cve-2025-23279, cve-2025-23281, cve-2025-23283, cve-2025-23284

 

NVIDIA GPU Display Driver

 

GeForce (Windows) Version: Less than 577.00
NVIDIA RTX, Quadro, NVS (Windows) Version: 573.48 and below
NVIDIA RTX, Quadro, NVS (Windows) Version: Less than 539.41
Tesla (Windows) Version: Less than 573.48
Tesla (Windows) Version: Less than 539.41

 

GeForce (Linux) Version: Less than 575.64.05
GeForce (Linux) Version: less than 570.172.08
GeForce (Linux) version: less than 535.261.03
NVIDIA RTX, Quadro, NVS (Linux) Version: Less than 575.64.05
NVIDIA RTX, Quadro, NVS (Linux) Version: Less than 570.172.08
NVIDIA RTX, Quadro, NVS (Linux) Version: less than 535.261.03
Tesla (Linux) Version: Less than 570.172.08
Tesla (Linux) Version: Less than 535.261.03

 

NVIDIA vGPU Software

 

Guest driver (Windows) version: 18.3 or lower
Guest driver (Windows) version: 16.10 or earlier
Guest driver (Linux) version : 18.3 or earlier
Guest driver (Linux) version: 16.10 or earlier
Virtual GPU Manager (Citrix Hypervisor, VMware vSphere) Version: 18.3 or earlier
Virtual GPU Manager (Citrix Hypervisor, VMware vSphere) Version: 16.10 and earlier
Virtual GPU Manager (Red Hat Enterprise Linux KVM, Ubuntu) Version: 18.3 and earlier
Virtual GPU Manager (Red Hat Enterprise Linux KVM, Ubuntu) Version: 16.10 and earlier
Virtual GPU Manager (Azure Stack HCI) version: 18.3 and earlier

 

 

Resolved Vulnerabilities

 

Privilege escalation vulnerability in NVIDIA Windows Installer (CVE-2025-23276)
Memory Boundary Crossing Access Vulnerability in the Kernel Mode Driver of the NVIDIA Display Driver (CVE-2025-23277)
Index Validation Insufficiency Vulnerability in the NVIDIA Display Driver (CVE-2025-23278)
Privilege Escalation Vulnerability in NVIDIA .run Installer (CVE-2025-23279)
Use-after-free vulnerability in NVIDIA GPU Display Driver (CVE-2025-23281)
Stack Buffer Overflow Vulnerability in NVIDIA vGPU Manager (CVE-2025-23283)
Stack Buffer Overflow Vulnerability in NVIDIA vGPU Manager (CVE-2025-23284)

 

 

Vulnerability Patches

Vulnerability patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

 

 

Cve-2025-23276, cve-2025-23277, cve-2025-23278, cve-2025-23279, cve-2025-23281, cve-2025-23283, cve-2025-23284

 

NVIDIA GPU Display Driver

 

GeForce (Windows) Version: 577.00
NVIDIA RTX, Quadro, NVS (Windows) Version: 573.48
NVIDIA RTX, Quadro, NVS (Windows) Version: 539.41
Tesla (Windows) Version: 573.48
Tesla (Windows) Version: 539.41

 

GeForce (Linux) Version: 575.64.05
GeForce (Linux) Version : 570.172.08
GeForce (Linux) version: 535.261.03
NVIDIA RTX, Quadro, NVS (Linux) Version: 575.64.05
NVIDIA RTX, Quadro, NVS (Linux) Version: 570.172.08
NVIDIA RTX, Quadro, NVS (Linux) Version: 535.261.03
Tesla (Linux) Version: 570.172.08
Tesla (Linux) Version: 535.261.03

 

NVIDIA vGPU Software

 

Guest driver (Windows) Version : 18.4
Guest driver (Windows) Version : 16.11
Guest driver (Linux) version : 18.4
Guest driver (Linux) version : 16.11
Virtual GPU Manager (Citrix Hypervisor, VMware vSphere) Version : 18.4
Virtual GPU Manager (Citrix Hypervisor, VMware vSphere) Version : 16.11
Virtual GPU Manager (Red Hat Enterprise Linux KVM, Ubuntu) Version: 18.4
Virtual GPU Manager (Red Hat Enterprise Linux KVM, Ubuntu) version: 16.11
Virtual GPU Manager (Azure Stack HCI) Version: 18.4

 

 

References

 

[1] Security Bulletin: NVIDIA GPU Display Driver – July 2025
https://nvidia.custhelp.com/app/answers/detail/a_id/5670/~/security-bulletin%3A-nvidia-gpu-display-driver—july-2025

Tags:
Previous Post

Next Post