Local privilege escalation by file manipulation in NVIDIA Installer for Windows

WithSecure Repository: Threat Intelligence

Local privilege escalation by file manipulation in NVIDIA Installer for Windows

NVIDIA Installer for Windows contains a vulnerability where an attacker may be able to escalate privileges.

The vulnerability is caused by incorrect file access permissions on a directory where a driver component is extracted and executed by a privileged process. The directory is writable to users with normal permissions.

Affected versions by driver branch:

R575 All driver versions prior to 577.00

R570 All driver versions prior to 573.48

R535 All driver versions prior to 539.41

ID: WITH-ZD-2025-0003

Other IDs: CVE-2025-23276

Application Detailed Category: installer

Application Super Category: local_service

CVSS v3: CVSS:AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Preconditions Needed For Attacker: local_user_level_access_required

References: https://nvidia.custhelp.com/app/answers/detail/a_id/5670

Version: 1.0