Primary

Context

NVIDIA Mellanox DPDK Poll Mode Driver Information Disclosure and Denial-of-Service Vulnerability

Vulnerability

A vulnerability has been identified in the NVIDIA Mellanox DPDK Poll Mode Driver (PMD) that allows an attacker on a virtual machine (VM) within the system to potentially disclose information and cause a denial-of-service on the network interface. This vulnerability affects all versions of NVIDIA Mellanox DPDK prior to 22.11_2504.1.0, as well as earlier evaluation versions of DPDK 20.11.

Impact

Exploitation of this vulnerability could lead to unauthorized information disclosure and disruption of network services, causing a denial-of-service condition on the affected interface.

Remediation

Users are advised to update to NVIDIA Mellanox DPDK version 22.11_2504.1.0 or later. For earlier evaluation versions, contact your account manager to access the updated version through NVOnline.

Added: Sep 4, 2025, 4:52 PM

Updated: Sep 4, 2025, 4:52 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.9

remediation

7.7

relevance

0.5

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NVIDIA Mellanox DPDK Poll Mode Driver Information Disclosure and Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating