What is CVE-2025-23269?

CVE-2025-23269 is a medium-severity vulnerability in Nvidia Jetson Orin And Xavier Devices, classified under CWE-1423. CVSS score: 4.7/10. Published 2025-07-17.

How severe is CVE-2025-23269?

Medium severity. CVSS v3 base score is 4.7 out of 10.

Is CVE-2025-23269 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Nvidia Jetson Orin And Xavier Devices

CVE-2025-23269

NVIDIA Jetson Linux contains a vulnerability in the kernel where an attacker may cause an exposure of sensitive information due to a shared microarchitectural predictor state that influences transient execution. A successful exploit of thi…

EPSS: 0.001 (19.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 4.7 (Medium). Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N.

Affected products

Nvidia Jetson Orin And Xavier Devices — versions NVIDIA Jetson Orin Series All versions prior to JP5.x: 35.6.2, NVIDIA Jetson Orin Series All versions prior to JP6.x: 36.4.4, NVIDIA Xavier Series All versions prior to JP5.x: 35.6.2

Weakness classification (CWE)

CWE-1423

Public proof-of-concept exploits

Sri3652/nvd-cve-analyzer

References

nvidia.custhelp.com/app/answers/detail/a_id/5662

Frequently asked questions

What is CVE-2025-23269?: CVE-2025-23269 is a medium-severity vulnerability in Nvidia Jetson Orin And Xavier Devices, classified under CWE-1423. CVSS score: 4.7/10. Published 2025-07-17.
How severe is CVE-2025-23269?: Medium severity. CVSS v3 base score is 4.7 out of 10.
Is CVE-2025-23269 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.