Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2023-0192

CVSS 4.7 · Medium EPSS 0.11% · P28
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-0192

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer handler, where improper privilege management can lead to escalation of privileges and information disclosure.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:L
Source: NVD (National Vulnerability Database)
Vulnerability Type
特权管理不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
NVIDIA GPU Display Driver for Windows 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
NVIDIA GPU Display Driver for Windows是美国英伟达(NVIDIA)公司的一个用于Windows系统中对显卡显示模块进行交互支持的驱动软件。 NVIDIA GPU Display Driver Windows版本存在安全漏洞,该漏洞源于存在不当的权限管理,可能导致权限升级和信息泄露。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
NVIDIAvGPU software (Virtual GPU Manager - Citrix Hypervisor, VMware vSphere, Red Hat Enterprise Linux KVM), NVIDIA Cloud Gaming (Virtual GPU Manager - Red Hat Enterprise Linux KVM) All versions prior to and including 15.1, 13.6, 11.11, and all versions prior to and including February 2023 release -

II. Public POCs for CVE-2023-0192

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2023-0192

登录查看更多情报信息。

Same Patch Batch · NVIDIA · 2023-04-01 · 16 CVEs total

CVE-2023-01898.8 HIGHNVIDIA GPU Display Driver for Linux 安全漏洞
CVE-2023-02088.4 HIGHNVIDIA DCGM 缓冲区错误漏洞
CVE-2023-01827.8 HIGHNVIDIA GPU Display Driver for Windows 缓冲区错误漏洞
CVE-2023-01917.1 HIGH多款NVIDIA产品 缓冲区错误漏洞
CVE-2023-01837.1 HIGHNVIDIA GPU Display Driver for Linux 缓冲区错误漏洞
CVE-2023-01817.1 HIGHNVIDIA GPU Display Driver for Windows 安全漏洞
CVE-2023-01807.1 HIGHNVIDIA GPU Display Driver 安全漏洞
CVE-2023-01856.7 MEDIUMNVIDIA GPU Display Driver for Linux 安全漏洞
CVE-2023-01986.6 MEDIUMNVIDIA GPU Display Driver for Linux 缓冲区错误漏洞
CVE-2023-01876.1 MEDIUM多款NVIDIA产品 缓冲区错误漏洞
CVE-2023-01866.1 MEDIUMNVIDIA GPU Display Driver for Windows 缓冲区错误漏洞
CVE-2023-01975.5 MEDIUMNVIDIA vGPU Software 代码问题漏洞
CVE-2023-01885.5 MEDIUM多款NVIDIA产品 缓冲区错误漏洞
CVE-2023-01952.0 LOWNVIDIA GPU Display Driver 安全漏洞
CVE-2023-01942.0 LOW多款NVIDIA产品 安全漏洞

IV. Related Vulnerabilities

Same product: vGPU software (Virtual GPU Manager - Citrix Hypervisor, VMware vSphere, Red Hat Enterprise Linux KVM), NVIDIA Cloud Gaming (Virtual GPU Manager - Red Hat Enterprise Linux KVM)
Same vendor: NVIDIA
Same weakness: CWE-269

V. Comments for CVE-2023-0192

No comments yet

Leave a comment