Lucene search

[email protected]CVE-2023-25515

HistoryJun 23, 2023 - 6:15 p.m.

CVE-2023-25515

2023-06-2318:15:10

CWE-822

[email protected]

web.nvd.nist.gov

nvidia

gpu

display driver

windows

linux

vulnerability

code execution

denial of service

escalation of privileges

data tampering

information disclosure

cve-2023-25515

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

23.2%

JSON

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where unexpected untrusted data is parsed, which may lead to code execution, denial of service, escalation of privileges, data tampering, or information disclosure.

Affected configurations

NVD

Node

nvidiagpu_display_driverRange470–474.44windows

nvidiagpu_display_driverRange530–536.23windows

AND

nvidiageforceMatch-

Node

nvidiagpu_display_driverRange530–536.40windows

AND

nvidiastudioMatch-

Node

nvidiagpu_display_driverRange470–474.44windows

nvidiagpu_display_driverRange525–529.11windows

nvidiagpu_display_driverRange530–536.25windows

AND

nvidianvsMatch-

nvidiaquadroMatch-

nvidiartxMatch-

Node

nvidiagpu_display_driverRange450–454.23windows

nvidiagpu_display_driverRange470–474.44windows

nvidiagpu_display_driverRange525–529.11windows

nvidiagpu_display_driverRange530–536.25windows

AND

nvidiateslaMatch-

Node

nvidiagpu_display_driverRange470–470.199.02linux

nvidiagpu_display_driverRange525–525.125.06linux

nvidiagpu_display_driverRange530–535.54.03linux

AND

nvidiageforceMatch-

nvidianvsMatch-

nvidiaquadroMatch-

nvidiartxMatch-

Node

nvidiagpu_display_driverRange450–450.248.02linux

nvidiagpu_display_driverRange470–470.199.02linux

nvidiagpu_display_driverRange525–525.125.06linux

nvidiagpu_display_driverRange530–535.54.03linux

AND

nvidiateslaMatch-

Node

nvidiavirtual_gpuRange<11.12

nvidiavirtual_gpuRange13.0–13.7

nvidiavirtual_gpuRange15.0–15.2

AND

microsoftwindowsMatch-

Node

nvidiacloud_gamingRange<531.79

AND

microsoftwindowsMatch-

CPENameOperatorVersion
nvidia:gpu_display_drivernvidia gpu display driverlt474.44
nvidia:gpu_display_drivernvidia gpu display driverlt536.23

CPE	Name	Operator	Version
nvidia:gpu_display_driver	nvidia gpu display driver	lt	474.44
nvidia:gpu_display_driver	nvidia gpu display driver	lt	536.23

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "GPU Display Driver for Windows and Linux",
    "vendor": "NVIDIA",
    "versions": [
      {
        "status": "affected",
        "version": "All versions prior to and including 15.2, 13.7, and 11.12, and all versions prior to and including the May 2023 release"
      }
    ]
  }
]