Primary

Context

NVIDIA Delegated Licensing Service Information Disclosure Vulnerability

Vulnerability

A vulnerability in the Delegated Licensing Service (DLS) component of the NVIDIA License System for all appliance platforms allows an authenticated user to perform authorized actions that could lead to unauthorized information disclosure. This vulnerability is present in all versions prior to 3.5.1 and 3.1.7.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive information, potentially allowing commands to be executed on the system. Additionally, according to NVIDIA, this vulnerability could lead to a denial-of-service condition.

Remediation

Users are advised to update to DLS version 3.5.1 or 3.1.7. For guidance on upgrading an existing DLS virtual appliance, refer to the 'Migrating a DLS Instance' section in the NVIDIA License System User Guide.

Added: Sep 30, 2025, 6:21 PM

Updated: Sep 30, 2025, 6:21 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.2

remediation

7.7

relevance

0.6

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.2

remediation

7.7

relevance

0.6

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

NVIDIA Delegated Licensing Service Information Disclosure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating