Graphics Card Maker Warns of New Security Flaw

CVECVE-2023-21670
CVSScvssV3_1: 7.8
SourceCVE-2023-21670

A new security vulnerability has been discovered that affects graphics cards. The CVE assigned is CVE-2023-21670 and it has been given a CVSS score of 7.8, meaning it is considered a high severity issue.

The vulnerability is a memory corruption flaw that exists in the GPU subsystem. It allows arbitrary code execution directly from the graphics processing unit when operating in a privileged mode. This could allow a local attacker to install programs, view and change data, or create new accounts with full admin rights on the affected system.

Graphics cards enable the processing of computer graphics and images on PCs and other devices. The GPU is the dedicated chip that handles graphics processing tasks. If exploited, this vulnerability could give a hacker full control of the entire system.

The manufacturer of the graphics cards has released a firmware update to address this issue. Users are highly recommended to update their graphics card drivers and firmware to the latest version released by the manufacturer. This will protect the system from any potential attacks attempting to exploit the vulnerability. Regularly checking for and installing updates is one of the best ways to help maintain security of computers and devices.

References