CVE-2023-0190

CWE-476 — NULL Pointer Dereference5 documents5 sources

Severity

5.5MEDIUM

EPSS

0.1%

top 72.93%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nvidia GPU Display Driver Nvidia Nvidia GPU Display Driver

Timeline

PublishedApr 22

Description

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where a NULL pointer dereference may lead to denial of service.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages8 packages

▶NVDnvidia/gpu_display_driver470 — 470.182.03+4

▶CVEListV5nvidia/nvidia_gpu_display_driverAll versions prior to and including 15.1, 13.6, 11.11, and all versions prior to and including February 2023 release

▶Debiannvidia-graphics-drivers< 470.182.03-1+3

▶Debiannvidia-graphics-drivers-tesla< 525.105.17-1

▶Debiannvidia-open-gpu-kernel-modules< 525.105.17-1+2

🔴Vulnerability Details

CVEList

CVE-2023-0190: NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where a NULL pointer dereference may lead to denial of service↗2023-04-22

▶

GHSA

GHSA-rgg8-qhg9-q698: NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where a NULL pointer dereference may lead to denial of service↗2023-04-22

▶

OSV

CVE-2023-0190: NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where a NULL pointer dereference may lead to denial of service↗2023-04-22

▶

📋Vendor Advisories

Debian

CVE-2023-0190: nvidia-graphics-drivers - NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode ...↗2023

▶