HIGH Patch AvailableCVE-2023-31024

NVIDIA GPU Driver Kernel Mode Vulnerability Allows for Denial of Service and Privilege Escalation

Discovered 5 January 2026 8 views

Overview

A high-severity vulnerability was identified in the NVIDIA GPU Display Driver for both Windows and Linux platforms. The flaw exists in the kernel mode driver component, where improper handling of specially crafted shader inputs can lead to an out-of-bounds write condition. A local, low-privileged attacker can exploit this by running a malicious application that sends malformed data to the GPU via standard graphics APIs. Successful exploitation can directly cause a system crash, leading to a Denial of Service (DoS) condition (e.g., a Blue Screen of Death on Windows or a kernel panic on Linux). Furthermore, the out-of-bounds write could potentially be controlled by an attacker to overwrite adjacent kernel memory structures. This creates a pathway for arbitrary code execution within the kernel, resulting in a full privilege escalation from an unprivileged user to SYSTEM or root. The vulnerability is especially dangerous in multi-tenant cloud GPU environments or shared workstations, as a malicious user or container could compromise the entire host machine, breaking tenant isolation and gaining access to all data on the system.

Affected Systems

NVIDIA GPU Display Driver for Windows < 537.58NVIDIA GPU Display Driver for Linux < 535.129.03NVIDIA RTX/Quadro Driver < R535 U4

Testing Guide

1. **Check Driver Version (Windows)**: Open the NVIDIA Control Panel, go to 'Help' -> 'System Information'. Compare the 'Driver version' with the patched versions. 2. **Check Driver Version (Linux)**: Run the command `nvidia-smi` in the terminal. The driver version is displayed in the top right corner. 3. **Confirm Vulnerability**: If your installed driver version is lower than the patched versions listed in the advisory, your system is vulnerable.

Mitigation Steps

1. **Update Drivers**: Immediately update NVIDIA drivers to the latest version provided by NVIDIA or your system vendor (e.g., Dell, HP). 2. **Restrict GPU Access**: In multi-tenant environments, use security features like NVIDIA MIG (Multi-Instance GPU) where possible to improve isolation between workloads. 3. **Implement EDR**: Use an Endpoint Detection and Response (EDR) solution to monitor for anomalous process behavior and kernel-level exploits. 4. **Follow Principle of Least Privilege**: Do not grant users administrative access on shared systems unless strictly necessary.

Patch Details

Patches are available in NVIDIA driver versions 537.58 (Windows) and 535.129.03 (Linux) and later.

Sources

← Back to vulnerabilities