CVE-2023-0180 HIGH

CVE-2023-0180

Vendor Nvidia

Product vGPU software (guest driver - Linux), vGPU software (Virtual GPU Manager - Citrix Hypervisor, VMware vSphere, Red Hat Enterprise Linux KVM), NVIDIA Cloud Gaming (guest driver - Linux), NVIDIA Cloud Gaming (Virtual GPU Manager - Red Hat Enterprise Linux KV

Weakness CWE-125

Published April 1, 2023

Last update February 13, 2025

View on NVD All CVEs

CVSS base score

7.1/10

Attack vector Local

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality High

Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

What the vulnerability does

01Description

NVIDIA GPU Display Driver for Linux contains a vulnerability in a kernel mode layer handler, which may lead to denial of service or information disclosure.

Key dates

02Disclosure timeline

April 1, 2023 CVE published

February 13, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-0180 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/125.html

Related vulnerabilities

Identifiers

CVE CVE-2023-0180

CWE CWE-125

CVSS 7.1 / HIGH

Affected versions

Vendor Nvidia

Affected All versions prior to and including 15.1, 13.6, 11.11, and all versions prior to and including Febru

CVE-2023-0180

01Description

02Disclosure timeline

03References

04Related CVE