CVE-2023-0185 MEDIUM

CVE-2023-0185

Vendor Nvidia
Product vGPU software (Virtual GPU Manager - Citrix Hypervisor, VMware vSphere, Red Hat Enterprise Linux KVM), NVIDIA Cloud Gaming (Virtual GPU Manager - Red Hat Enterprise Linux KVM)
Weakness CWE-196
Published April 1, 2023
Last update February 13, 2025

CVSS base score

6.7/10
Attack vector Local
Attack complexity High
Privileges required High
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:H

What the vulnerability does

01Description

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where sign conversion issuescasting an unsigned primitive to signed may lead to denial of service or information disclosure.

Key dates

02Disclosure timeline

April 1, 2023 CVE published
February 13, 2025 Record updated