CVE-2023-0194Improper Validation of Specified Quantity in Input in Nvidia Virtual GPU

CWE-1284Improper Validation of Specified Quantity in Input5 documents5 sources
Severity
4.6MEDIUMNVD
CNA2.0
EPSS
0.1%
top 75.42%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Nvidia Virtual GPU
Timeline
PublishedApr 1

Description

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer driver, where an invalid display configuration may lead to denial of service.

CVSS vector

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 0.9 | Impact: 3.6

Affected Packages1 packages

NVDnvidia/virtual_gpu13.013.7+2

🔴Vulnerability Details

3
GHSA
GHSA-fqc4-2c83-qr8j: NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer driver, where an invalid display configuration may l2023-04-01
OSV
CVE-2023-0194: NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer driver, where an invalid display configuration may l2023-04-01
CVEList
CVE-2023-0194: NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer driver, where an invalid display configuration may l2023-04-01

📋Vendor Advisories

1
Debian
CVE-2023-0194: nvidia-graphics-drivers - NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the ...2023
CVE-2023-0194 — Nvidia Virtual GPU vulnerability | cvebase