Kernel Mode Layer Driver Vulnerability in NVIDIA GPU Display Driver
CVE-2023-0194

2LOW

Key Information:

Vendor
Nvidia
Status
Vgpu Software (guest Driver - Windows), Nvidia Cloud Gaming (guest Driver - Windows)
Vendor
CVE Published:
1 April 2023

Summary

The NVIDIA GPU Display Driver for both Windows and Linux is susceptible to a vulnerability in its kernel mode layer driver. An improperly configured display can trigger a state that leads to a denial of service, potentially impacting system availability. This issue highlights the necessity for users and administrators to regularly update their drivers and ensure proper configurations to mitigate risks associated with display settings.

Affected Version(s)

vGPU software (guest driver - Windows), NVIDIA Cloud Gaming (guest driver - Windows) All versions prior to and including 15.1, 13.6, 11.11, and all versions prior to and including February 2023 release

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5452
https://security.gentoo.org/glsa/202310-02

CVSS V3.1

Score:
2
Severity:
LOW
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Physical
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.