Login Sign Up

CVE-2025-23355

6.7 MEDIUM

📋 TL;DR

This vulnerability in NVIDIA Nsight Graphics for Windows allows DLL hijacking attacks where an attacker could place a malicious DLL in a location that the application loads from. Successful exploitation could lead to code execution, privilege escalation, data tampering, or denial of service. Users of NVIDIA Nsight Graphics on Windows are affected.

💻 Affected Systems

Products:
  • NVIDIA Nsight Graphics
Versions: Versions prior to 2024.4.1
Operating Systems: Windows
Default Config Vulnerable: ⚠️ Yes
Notes: Only affects Windows installations of NVIDIA Nsight Graphics.

📦 What is this software?

Nsight Graphics by Nvidia

View all CVEs affecting Nsight Graphics →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Full system compromise with administrative privileges, data theft/modification, and persistent backdoor installation.

🟠

Likely Case

Local privilege escalation leading to unauthorized system access and potential data exfiltration.

🟢

If Mitigated

Limited impact with proper file permissions and user account controls preventing DLL placement.

🌐 Internet-Facing: LOW - This is primarily a local attack vector requiring access to the target system.
🏢 Internal Only: MEDIUM - Internal attackers with local access could exploit this for privilege escalation.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: LOW

DLL hijacking attacks are well-understood and relatively simple to execute with local access.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 2024.4.1

Vendor Advisory: https://nvidia.custhelp.com/app/answers/detail/a_id/5704

Restart Required: Yes

Instructions:

1. Download NVIDIA Nsight Graphics 2024.4.1 or later from NVIDIA's website. 2. Run the installer. 3. Follow installation prompts. 4. Restart the system if required.

🔧 Temporary Workarounds

Restrict DLL search paths

windows

Use application control policies to restrict where Nsight Graphics can load DLLs from

Use Windows AppLocker or similar to restrict DLL loading to trusted directories

Remove vulnerable versions

windows

Uninstall vulnerable versions of Nsight Graphics until patched

Control Panel > Programs > Uninstall NVIDIA Nsight Graphics

🧯 If You Can't Patch

  • Restrict user permissions to prevent DLL placement in vulnerable directories
  • Monitor for suspicious DLL loading events using Windows Event Logs

🔍 How to Verify

Check if Vulnerable:

Check Nsight Graphics version in Help > About or via installed programs list

Check Version:

wmic product where name='NVIDIA Nsight Graphics' get version

Verify Fix Applied:

Verify version is 2024.4.1 or later in Help > About

📡 Detection & Monitoring

Log Indicators:

  • Windows Event Logs showing DLL loading from unusual locations
  • Process Monitor logs showing Nsight Graphics loading unexpected DLLs

Network Indicators:

  • No direct network indicators for this local attack

SIEM Query:

EventID=7 OR EventID=11 where Image contains 'nsight' AND TargetImage contains '.dll'

📊 Metadata

CVE ID: CVE-2025-23355
CVSS v3 Score: 6.7 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
CWE: CWE-427
EPSS Score: 0.02% exploit probability (4.6th percentile)
Published: October 1, 2025
Last Updated: October 22, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-23355, you might also want to check these:

CVE-2025-4981 9.9

This vulnerability allows authenticated Mattermost users to write files to arbitrary locations on th...

Same vulnerability type (CWE-427)
CVE-2022-24955 9.8

CVE-2022-24955 is a DLL hijacking vulnerability in Foxit PDF software that allows attackers to execu...

Same vulnerability type (CWE-427)
CVE-2023-25143 9.8

This vulnerability in Trend Micro Apex One Server installer allows attackers to execute arbitrary co...

Same vulnerability type (CWE-427)