GeForce's graphics cards: Nvidia backdoor enables BIOS modifications

GeForce's graphics cards: Nvidia backdoor enables BIOS modifications
3 min read
21 August 2023
1
· 53 · 0

With two new flash tools, the BIOS versions of current GeForce graphics cards can be overwritten - even in the RTX 4000 models.

Two hobbyists have managed to do what Nvidia has been trying to prevent for years: They have designed tools that allow modified BIOS versions to be flashed onto current GeForce graphics cards. Since the GTX-900 generation (Maxwell), this was only possible to a limited extent because the GPUs have since matched the IDs and only accept signed firmwares. The error message "board ID mismatch" appears in case of deviations. AMD also prohibits BIOS modifications for its Radeon graphics cards.

"kefi" now offers the tool nvflashk, "Veii" (omg)vflash. Both are based on the old nvflash tool, but bypass Nvidia's lock on new graphics cards with updates. "kefi" has, according to its own information, found a backdoor that Nvidia itself has built in and is supposed to allow deviating IDs.

Modifications are of course done at the user's own risk and void the warranty. There are no security checks during the flash process. Techpowerup checked both tools for malware, but found nothing.

Firmware vulnerability

It is questionable why such a backdoor even exists. Nvidia controls the keys and can simply sign firmwares. Corresponding means are usually also given to partner graphics card manufacturers.

Furthermore, it is a security hole that becomes relevant when several people have physical access to a system. This can be the case for workstations with GeForce graphics cards, for example. It is not known whether professional GPUs also have the backdoor.

At the end of 2018, Intel once screwed up the firmware signing in its NUC mini PCs. The vulnerability CVE-2018-12176 was classified as high-risk at the time with a score of 8.2.

More power

Meanwhile, hobbyists can use the gap to install modified BIOS versions even on current graphics cards like the GeForce RTX 4090. Thus, the power limit can be increased, the fan curve can be changed directly in the BIOS, or the GPU voltage can be increased to squeeze the last percent of clock frequency out of the graphics chip.

Meanwhile, Nvidia can introduce a BIOS flash lock for newly produced graphics cards at any time. Corresponding updates were already available earlier against Nvflash, which was able to bypass the mismatch message for RTX 2000 graphics cards in the meantime.

nvidia bios gpu security hardware
In case you have found a mistake in the text, please send a message to the author by selecting the mistake and pressing Ctrl-Enter.
Follow
Kelly 3.6K
I'm your source for the latest in tech news and updates. Stay informed with my articles on the most exciting developments in the tech world
Comments (0)

    No comments yet

You must be logged in to comment.

Sign In / Sign Up

Similar Posts

  1. The PC Builder’s Glossary: Every term you need to know to build your first computer

    Introduction: It’s possible there’s not a hobby in the world with...

  2. NVIDIA pretends to care about gamers

    NVIDIA doesn't care about you. They don't care about gamers, and they don't care...

  3. The Best Graphic Cards to Own in 2023

    Introduction: In the ever-evolving world of technology, having a powerful graph...

  4. Nvidia GeForce RTX 3080 review

    The RTX 3080 is the most powerful GPU we've ever seen at this price point. But,...

  5. Top 5 best budget laptops for gaming

    Purchasing a new gaming laptop often necessitates large sums of money. There are...

  6. RTX 3070 graphics for videoediting?

    In terms of 4K gaming, the Nvidia GeForce RTX 3070 has accomplished what the GeF...

  7. Is This AMD's Secret Weapon?

    Are you in the market for a new graphics card? If so, you've probably seen plent...

  8. The Lenovo Legion 5 Series India variants with Intel Core i7 and RTX 3050Ti spotted on Lenovo's website

    The Lenovo Legion 5 gaming laptop is almost ready for launch in India, according...