CNNVD-202510-2837 Information
CNNVD ID
CNNVD-202510-2837
Related CVE
- CNNVD Published: 2025-10-22
Description (Chinese)
NVIDIA ConnectX和NVIDIA BlueField都是美国英伟达(NVIDIA)公司的产品。NVIDIA ConnectX是一系列智能网络接口卡。NVIDIA BlueField是一系列数据处理单元。 NVIDIA ConnectX和NVIDIA BlueField存在缓冲区错误漏洞,该漏洞源于管理接口存在缺陷,可能导致执行任意代码。
Description (English)
Both NVIDIA ConectX and NVIDIA Bluefield are products of NVIDIA in the United States. NVIDIA ConectX is a series of smart network interface cards. NVIDIA Bluefield is a series of data-processing units. NVIDIA ConectX and NVIDIA Bluefield had an error loophole in the buffer zone, which stemmed from deficiencies in the management interface, which could lead to the implementation of any code.
Hazard Level
High
Vulnerability Type
缓冲区错误
Affected Vendor
英伟达
Published
2025-10-22
Last Modified
2026-02-24
References
https://nvd.nist.gov/vuln/detail/CVE-2025-23299 https://www.cve.org/CVERecord?id=CVE-2025-23299 https://nvidia.custhelp.com/app/answers/detail/a_id/5684 https://access.redhat.com/security/cve/cve-2025-23299
Patch
https://nvidia.custhelp.com/app/answers/detail/a_id/5684
Share on: