Rewterz Threat Alert – APT-C-35 aka Donot Team – Active IOCs
April 4, 2023Rewterz Threat Alert – A New ‘Money Message’ Ransomware Demands A Million Dollar Ransom – Active IOCs
April 4, 2023Rewterz Threat Alert – APT-C-35 aka Donot Team – Active IOCs
April 4, 2023Rewterz Threat Alert – A New ‘Money Message’ Ransomware Demands A Million Dollar Ransom – Active IOCs
April 4, 2023Severity
Medium
Analysis Summary
CVE-2023-0180 CVSS:7.1
NVIDIA GPU Display Driver could allow a local authenticated attacker to obtain sensitive information, caused by an error in the kernel mode layer handler. An attacker could exploit this vulnerability to obtain sensitive information or cause a denial of service.
CVE-2023-0181 CVSS:7.1
NVIDIA GPU Display Driver is vulnerable to a denial of service, caused by a vulnerability in the kernel mode layer handler. A local authenticated attacker could exploit this vulnerability to cause a denial of service or data tampering.
CVE-2023-0182 CVSS:7.8
NVIDIA GPU Display Driver is vulnerable to a denial of service, caused by a vulnerability in the kernel mode layer handler. A local authenticated attacker could exploit this vulnerability to trigger an out-of-bounds write and cause a denial of service, data tampering or obtain sensitive information.
CVE-2023-0183 CVSS:7.1
NVIDIA GPU Display Driver is vulnerable to a denial of service, caused by a vulnerability in the kernel mode layer handler. A local authenticated attacker could exploit this vulnerability to trigger an out-of-bounds write and cause a denial of service or data tampering.
CVE-2023-0185 CVSS:6.7
NVIDIA GPU Display Driver is vulnerable to a denial of service, caused by a vulnerability in the kernel mode layer. A local authenticated attacker could exploit this vulnerability to cause a denial of service or obtain sensitive information.
CVE-2023-0186 CVSS:6.1
NVIDIA GPU Display Driver is vulnerable to a denial of service, caused by a vulnerability in the kernel mode layer handler. A local authenticated attacker could exploit this vulnerability to trigger an out-of-bounds write and cause a denial of service and data tampering.
CVE-2023-0187 CVSS:6.1
NVIDIA GPU Display Driver is vulnerable to a denial of service, caused by a vulnerability in the kernel mode layer handler. A local authenticated attacker could exploit this vulnerability to trigger an out-of-bounds read and cause a denial of service.
CVE-2023-0188 CVSS:5.5
NVIDIA GPU Display Driver is vulnerable to a denial of service, caused by a vulnerability in the kernel mode layer handler. A local authenticated attacker could exploit this vulnerability to trigger an out-of-bounds read and cause a denial of service.
CVE-2023-0189 CVSS:8.8
NVIDIA GPU Display Driver could allow a local authenticated attacker to gain elevated privileges on the system, caused by a vulnerability in the kernel mode layer handler. An attacker could exploit this vulnerability to execute arbitrary code with elevated privileges.
CVE-2023-0191 CVSS:7.1
NVIDIA GPU Display Driver is vulnerable to a denial of service, caused by a vulnerability in the kernel mode layer handler. A local authenticated attacker could exploit this vulnerability to trigger an out-of-bounds access cause a denial of service, obtain sensitive information or lead to data tampering.
CVE-2023-0192 CVSS:4.7
NVIDIA GPU Display Driver could allow a local authenticated attacker to gain elevated privileges on the system, caused by a vulnerability in the kernel mode layer handler. An attacker could exploit this vulnerability to gain elevated privileges on the system and obtain sensitive information.
CVE-2023-0194 CVSS:2
NVIDIA GPU Display Driver is vulnerable to a denial of service, caused by a vulnerability in the kernel mode layer driver. A physical attacker could exploit this vulnerability using an invalid display configuration to cause a denial of service.
CVE-2023-0195 CVSS:2
NVIDIA GPU Display Driver could allow a physical attacker to obtain sensitive information, caused by an error in the kernel mode layer driver. An attacker could exploit this vulnerability using an invalid display configuration to obtain sensitive information.
CVE-2023-0197 CVSS:5.5
NVIDIA GPU Display Driver is vulnerable to a denial of service, caused by a NULL pointer dereference in the Virtual GPU Manager. A local authenticated attacker could exploit this vulnerability to cause a denial of service.
CVE-2023-0198 CVSS:6.6
NVIDIA GPU Display Driver is vulnerable to a denial of service, caused by improper restriction of operations within the bounds of a memory buffer in the kernel mode layer. A local authenticated attacker could exploit this vulnerability to cause a denial of service, obtain sensitive information or lead to data tampering.
Impact
- Privilege Escalation
- Denial of Service
- Information Disclosure
Indicators Of Compromise
CVE
- CVE-2023-0180
- CVE-2023-0181
- CVE-2023-0182
- CVE-2023-0183
- CVE-2023-0185
- CVE-2023-0186
- CVE-2023-0187
- CVE-2023-0188
- CVE-2023-0189
- CVE-2023-0191
- CVE-2023-0192
- CVE-2023-0194
- CVE-2023-0195
- CVE-2023-0197
- CVE-2023-0198
Affected Vendors
NVIDIA
Affected Products
- NVIDIA GPU Display Driver for Linux 15.0
- NVIDIA GPU Display Driver for Linux 13.0
- NVIDIA GPU Display Driver for Linux 11.0
- NVIDIA GPU Display Driver for Windows 15.0
- NVIDIA GPU Display Driver for Windows 13.0
- NVIDIA GPU Display Driver for Windows 11.0
Remediation
Refer to NVIDIA Security Advisory for patch, upgrade or suggested workaround information.