CVE-2023-0193
published 2023-03-10CVE-2023-0193: NVIDIA CUDA Toolkit SDK contains a vulnerability in cuobjdump, where a local user running the tool against a malicious binary may cause an out-of-bounds read…
medium4.4CVSS 3.1
AVLACLPRLUINSUCLINAL
NVIDIA CUDA Toolkit SDK contains a vulnerability in cuobjdump, where a local user running the tool against a malicious binary may cause an out-of-bounds read, which may result in a limited denial of service and limited information disclosure.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | nvidia-cuda-toolkit | < nvidia-cuda-toolkit 12.1.0-2 (forky) | nvidia-cuda-toolkit 12.1.0-2 (forky) |
| nvidia | cuda_toolkit | < 12.1 | 12.1 |
| nvidia | nvidia_cuda_toolkit | — | — |
CVSS provenance
nvdv3.14.4MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
osv4.4MEDIUM