CVE-2023-0198 MEDIUM

CVE-2023-0198

Vendor Nvidia

Product vGPU software (guest driver - Linux), vGPU software (Virtual GPU Manager - Citrix Hypervisor, VMware vSphere, Red Hat Enterprise Linux KVM), , NVIDIA Cloud Gaming (guest driver - Linux), NVIDIA Cloud Gaming (Virtual GPU Manager - Red Hat Enterprise Linux

Weakness CWE-119

Published April 1, 2023

Last update February 13, 2025

View on NVD All CVEs

CVSS base score

6.6/10

Attack vector Local

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality Low

Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

What the vulnerability does

01Description

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where improper restriction of operations within the bounds of a memory buffer can lead to denial of service, information disclosure, and data tampering.

Key dates

02Disclosure timeline

April 1, 2023 CVE published

February 13, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2023-0198 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/119.html

Related vulnerabilities

Identifiers

CVE CVE-2023-0198

CWE CWE-119

CVSS 6.6 / MEDIUM

Affected versions

Vendor Nvidia

Affected All versions prior to and including 15.1, 13.6, 11.11, and all versions prior to and including Febru

CVE-2023-0198

01Description

02Disclosure timeline

03References

04Related CVE