8.8
CVE-2023-0189
- EPSS 0.11%
- Veröffentlicht 01.04.2023 05:15:08
- Zuletzt bearbeitet 21.11.2024 07:36:42
- Quelle psirt@nvidia.com
- CVE-Watchlists
- Unerledigt
LoginNVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler which may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Nvidia ≫ Virtual Gpu Version < 11.12
Nvidia ≫ Virtual Gpu Version >= 13.0 < 13.7
Nvidia ≫ Virtual Gpu Version >= 15.0 < 15.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.11% | 0.293 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
| psirt@nvidia.com | 8.8 | 2 | 6 |
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
|
CWE-822 Untrusted Pointer Dereference
The product obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer.