NVIDIA GPU Display Driver wksServicePlugin.dll Named Pipe ACL Flaw
CVE-2023-31019 Published on November 2, 2023
CVE
NVIDIA GPU Display Driver for Windows contains a vulnerability in wksServicePlugin.dll, where the driver implementation does not restrict or incorrectly restricts access from the named pipe server to a connecting client, which may lead to potential impersonation to the client's secure context.
Weakness Type
What is an Authorization Vulnerability?
The software does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
CVE-2023-31019 has been classified to as an Authorization vulnerability or weakness.
Products Associated with CVE-2023-31019
Want to know whenever a new CVE is published for NVIDIA Gpu Display Driver? stack.watch will email you.
Affected Versions
NVIDIA GPU Display driver, vGPU driver, and Cloud gaming driver:- Version All versions prior to and including 13.8, 15.3, 16.1 and all versions prior to and including September 2023 release is affected.
- Before and including 16.1 is affected.
- Before and including september2023 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.