CVE-2023-0195

Summary

NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer driver nvlddmkm.sys, where an can cause CWE-1284, which may lead to hypothetical Information leak of unimportant data such as local variable data of the driver

Affected Software

VendorProductVersion RangeStatus
NVIDIAvGPU software (guest driver - Windows), NVIDIA Cloud Gaming (guest driver - Windows)All versions prior to and including 15.1, 13.6, 11.11, and all versions prior to and including February 2023 releaseaffected

Weaknesses

  • CWE-1284: CWE-1284: Improper Validation of Specified Quantity in Input

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References