Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
amazonAmazonALAS-2019-1182
HistoryMar 21, 2019 - 7:07 p.m.

Low: nvidia

2019-03-2119:07:00
alas.aws.amazon.com
63

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

0.0004 Low

EPSS

Percentile

5.1%

JSON

Issue Overview:

NVIDIA graphics driver contains a vulnerability that may allow access to application data processed on the GPU through a side channel exposed by the GPU performance counters. Local user access is required. This is not a network or remote attack vector. (CVE-2018-6260)

Affected Packages:

nvidia

Issue Correction:
Run yum update nvidia to update your system.

New Packages:

src:  
ย ย ย  nvidia-410.104-2018.03.111.amzn1.src  
  
x86_64:  
ย ย ย  nvidia-dkms-410.104-2018.03.111.amzn1.x86_64  
ย ย ย  nvidia-410.104-2018.03.111.amzn1.x86_64

Additional References

Red Hat: CVE-2018-6260

Mitre: CVE-2018-6260

OSVersionArchitecturePackageVersionFilename
Amazon Linux1x86_64nvidia-dkms<ย 410.104-2018.03.111.amzn1nvidia-dkms-410.104-2018.03.111.amzn1.x86_64.rpm
Amazon Linux1x86_64nvidia<ย 410.104-2018.03.111.amzn1nvidia-410.104-2018.03.111.amzn1.x86_64.rpm

Related

prion 1
cve 1
cvelist 1
nvidia 2
ubuntu 1
nessus 4
openvas 1
ubuntucve 1
debiancve 1
nvd 1
hp 1
ibm 1
lenovo 2
prion
prion
Design/Logic Flaw
2018-11-13 17:29:00
cve
cve
CVE-2018-6260
2018-11-13 18:00:00
cvelist
cvelist
CVE-2018-6260
2018-11-13 18:00:00
nvidia
nvidia
Security Notice: NVIDIA Response to โ€œRendered Insecure: GPU Side Channel Attacks are Practicalโ€ - November 2018
2018-11-09 00:00:00
Security Bulletin: NVIDIA GPU Display Driver - February 2019
2019-02-22 00:00:00
ubuntu
ubuntu
NVIDIA graphics drivers vulnerability
2019-03-07 00:00:00
nessus
nessus
NVIDIA Linux GPU Display Driver Information Disclosure Vulnerability (CVE-2018-6260)
2019-03-01 00:00:00
Ubuntu 18.04 LTS : NVIDIA graphics drivers vulnerability (USN-3904-1)
2019-03-08 00:00:00
Amazon Linux AMI : nvidia (ALAS-2019-1182)
2019-03-26 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3904-1)
2019-03-08 00:00:00
ubuntucve
ubuntucve
CVE-2018-6260
2018-11-13 00:00:00
debiancve
debiancve
CVE-2018-6260
2018-11-13 18:00:00
nvd
nvd
CVE-2018-6260
2018-11-13 17:29:00
hp
hp
HPSBHF03611 rev. 2 - NVIDIA GPU Display Driver Vulnerabilities
2019-03-21 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities affect NVIDIA GPU Display Drivers for Linux and Windows
2023-12-07 22:45:03
lenovo
lenovo
NVIDIA GPU Display Driver Update - Lenovo Support NL
2019-04-17 19:16:53
NVIDIA GPU Display Driver Update - Lenovo Support US
2019-04-17 19:16:53

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for ALAS-2019-1182
prion1cve1cvelist1nvidia2ubuntu1nessus4openvas1ubuntucve1debiancve1nvd1hp1ibm1lenovo2