CVE-2024-0107 - NVIDIA GPU Display Driver Vulnerability: Out-of-Bounds Read Leading to Code Execution, DoS, and More

A recently discovered vulnerability, CVE-2024-0107, affects NVIDIA GPU Display Drivers for Windows, specifically within the user mode layer. This vulnerability allows unprivileged users to create an out-of-bounds read, potentially resulting in numerous adverse effects, including code execution, denial of service (DoS), privilege escalation, information disclosure, and data tampering.

In this post, we'll delve into the details of this vulnerability, highlighting how it occurs and the potential impacts it may have on affected systems. Additionally, we'll showcase some code snippets to demonstrate the vulnerability and link to the original references from NVIDIA and MITRE.

Vulnerability Summary

The vulnerability resides in the NVIDIA GPU Display Driver, a crucial software component that communicates between the Windows operating system and the NVIDIA GPU hardware. Under specific conditions, an unprivileged regular user can create an out-of-bounds read, allowing them to access memory areas that are not meant to be accessible.

Exploit Details

To exploit this vulnerability, an attacker needs to have local system access as an unprivileged regular user. By crafting a specific API call to the affected NVIDIA GPU Display Driver, the attacker can trigger an out-of-bounds read, leading to unintended information disclosure and potential privilege escalation.

The proof-of-concept (PoC) code snippet below demonstrates a simplified version of the exploit

#include <Windows.h>
#include <NvAPI.h> // NVIDIA API header

int main() {
  NvAPI_Initialize(); // Initialize NVIDIA API

  // Prepare malicious payload
  // Crafted API call with out-of-bounds read
  NvU32 maliciousPayload = x...;

  // Trigger vulnerability
  NvAPI_GPU_GetAllClockFrequencies(..., &maliciousPayload);

  // Further exploit actions
  ...
}

When executed, this PoC results in an out-of-bounds read and potential unintended consequences.

Impact

The primary risks associated with this vulnerability are code execution, denial of service (DoS), privilege escalation, information disclosure, and data tampering. Depending on the attacker's intent and level of access, they could create a wide range of impacts on affected systems, from crashing the GPU driver to tampering with the victim's data.

For more in-depth information about CVE-2024-0107, please refer to the following sources

1. NVIDIA Security Bulletin: https://nvidia.custhelp.com/app/answers/detail/a_id/5261
2. MITRE CVE Entry: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-0107

Conclusion

CVE-2024-0107 is a critical vulnerability affecting NVIDIA GPU Display Drivers for Windows. Successful exploitation can lead to multiple adverse impacts on the victim's system, from data tampering to privilege escalation. It's crucial to keep your GPU drivers up-to-date and apply any patches or updates recommended by NVIDIA to protect your system from this vulnerability.

Timeline

Published on: 08/08/2024 16:57:49 UTC