CVE-2025-23263

HIGH

7.6

Description

NVIDIA DOCA-Host and Mellanox OFED contain a vulnerability in the VGT+ feature, where an attacker on a VM might cause escalation of privileges and denial of service on the VLAN.

CVE Details

CVSS v3.1 Score7.6

SeverityHIGH

CVSS VectorCVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H

Attack VectorADJACENT_NETWORK

ComplexityLOW

Privileges RequiredLOW

User InteractionNONE

Published7/17/2025

Last Modified7/17/2025

Sourcenvd

Honeypot Sightings0

Weaknesses (CWE)

CWE-279

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5654(psirt@nvidia.com)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.