Login Sign Up

CVE-2023-0182

7.8 HIGH
Denial of Service

📋 TL;DR

This vulnerability in NVIDIA GPU Display Driver for Windows allows attackers to write data beyond allocated memory boundaries in the kernel mode layer. Successful exploitation could lead to denial of service, information disclosure, or data tampering. All Windows systems using affected NVIDIA GPU drivers are potentially vulnerable.

💻 Affected Systems

Products:
  • NVIDIA GPU Display Driver for Windows
Versions: Multiple versions prior to 528.49
Operating Systems: Windows
Default Config Vulnerable: ⚠️ Yes
Notes: Requires local access to the system; affects both consumer and professional GPU lines.

📦 What is this software?

Virtual Gpu by Nvidia

View all CVEs affecting Virtual Gpu →

Virtual Gpu by Nvidia

View all CVEs affecting Virtual Gpu →

Virtual Gpu by Nvidia

View all CVEs affecting Virtual Gpu →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise with kernel-level code execution, allowing attackers to install persistent malware, steal sensitive data, or render the system unusable.

🟠

Likely Case

System crashes (blue screen) leading to denial of service, with potential information disclosure from kernel memory.

🟢

If Mitigated

Limited impact with proper security controls like driver signature enforcement and limited user privileges.

🌐 Internet-Facing: LOW
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: HIGH

Exploitation requires local access and kernel-level programming knowledge; no public exploits known at this time.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 528.49 or later

Vendor Advisory: https://nvidia.custhelp.com/app/answers/detail/a_id/5452

Restart Required: Yes

Instructions:

1. Download latest NVIDIA driver from official website. 2. Run installer with administrative privileges. 3. Select 'Custom installation' and check 'Perform clean installation'. 4. Complete installation and restart system.

🔧 Temporary Workarounds

Restrict local access

windows

Limit physical and remote access to vulnerable systems to reduce attack surface

Enable driver signature enforcement

windows

Ensure Windows requires signed drivers to prevent unauthorized kernel code execution

bcdedit /set testsigning off
bcdedit /set nointegritychecks off

🧯 If You Can't Patch

  • Implement strict access controls and monitor for unusual system behavior
  • Isolate vulnerable systems from critical networks and data

🔍 How to Verify

Check if Vulnerable:

Check NVIDIA driver version in Device Manager > Display adapters > NVIDIA GPU > Driver tab

Check Version:

nvidia-smi --query-gpu=driver_version --format=csv,noheader

Verify Fix Applied:

Verify driver version is 528.49 or higher after update

📡 Detection & Monitoring

Log Indicators:

  • Windows Event ID 41 (Kernel-Power) with bugcheck codes
  • Unexpected system crashes/BSOD
  • NVIDIA driver service failures

Network Indicators:

  • Unusual outbound connections following system instability

SIEM Query:

EventID=41 AND Source="Microsoft-Windows-Kernel-Power" AND Description contains "bugcheck"

📊 Metadata

CVE ID: CVE-2023-0182
CVSS v3 Score: 7.8 (HIGH)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE: CWE-787
Published: April 1, 2023
Last Updated: November 21, 2024

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2023-0182, you might also want to check these:

CVE-2022-43604 10.0

CVE-2022-43604 is a critical out-of-bounds write vulnerability in the OpENer EtherNet/IP stack that ...

Same vulnerability type (CWE-787)
CVE-2025-24201 10.0

This critical vulnerability allows malicious web content to break out of the Web Content sandbox via...

Same vulnerability type (CWE-787)
CVE-2020-14871 10.0

This is a critical buffer overflow vulnerability (CWE-787) in Oracle Solaris's Pluggable Authenticat...

Same vulnerability type (CWE-787)