CVE-2023-0195
First published: Sat Apr 01 2023(Updated: )
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer driver nvlddmkm.sys, where an can cause CWE-1284, which may lead to hypothetical Information leak of unimportant data such as local variable data of the driver
Credit: psirt@nvidia.com psirt@nvidia.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NVIDIA Virtual GPU | <11.12 | |
| NVIDIA Virtual GPU | >=13.0<13.7 | |
| NVIDIA Virtual GPU | >=15.0<15.2 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this NVIDIA GPU Display Driver for Windows vulnerability?
The vulnerability ID is CVE-2023-0195.
What is the severity of CVE-2023-0195?
The severity of CVE-2023-0195 is low.
What is CWE-1284?
CWE-1284 is a Common Weakness Enumeration category for information leak vulnerabilities.
Are all versions of Nvidia Virtual Gpu affected by CVE-2023-0195?
No, only Nvidia Virtual Gpu versions up to 11.12 are affected.
How can I fix this vulnerability?
To fix this vulnerability, update your Nvidia Virtual Gpu driver to a version higher than 11.12.
- collector/nvd-api
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/nvidia
- canonical/nvidia virtual gpu
- version/nvidia virtual gpu/13.0
- version/nvidia virtual gpu/15.0
- vendor/microsoft
- canonical/microsoft windows