Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

The vulnerability of the DxgkDdiEscape function in the NVIDIA GeForce, Quadro, and Tesla graphics processor software, related to errors in synchronizing common data, allows attackers to cause system failures, increase their privileges, or disclose sensitive information.

🗓️ 17 Feb 2020 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec
 bdu_fstec🔗 bdu.fstec.ru👁 2 Views

DxgkDdiEscape flaw in NVIDIA GPUs from sync errors; causes crashes, privilege escalation, or disclosure.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
IBM Security Bulletins		Security Bulletin: NVIDIA Windows GPU Display driver is vulnerable to several security vulnerabilities.
25 Jun 202018:26
ibm
BDU FSTEC		The vulnerability of NVIDIA GeForce, Quadro, and Tesla graphics software lies in errors during the path validation of dynamically loaded libraries, allowing attackers to exploit this to increase their privileges.
17 Feb 202000:00
bdu_fstec
CVE		CVE-2019-5675
10 May 201920:18
cve
Cvelist		CVE-2019-5675
10 May 201920:18
cvelist
EUVD		EUVD-2019-15250
7 Oct 202500:30
euvd
Hewlett-Packard		HPSBHF03645 rev. 3 - NVIDIA GPU Display Driver Vulnerabilities 2019
16 Dec 201900:00
hp
Lenovo		NVIDIA GPU Display Driver Update - Lenovo Support US
9 May 201920:31
lenovo
Lenovo		NVIDIA GPU Display Driver Update - Lenovo Support US
9 May 201920:31
lenovo
NVD		CVE-2019-5675
10 May 201921:29
nvd
Nvidia		Security Bulletin: NVIDIA GPU Display Driver - May 2019
9 May 201900:00
nvidia
Rows per page
Vulners
Node
nvidiageforce_r430Range<430.64
OR
nvidiaquadro_r430Range<430.64
OR
nvidiaquadro_r418Range<425.51
OR
nvidiaquadro_r410Range<412.36
OR
nvidiaquadro_r390Range<392.53
OR
nvidiatesla_r418Range<425.25
OR
nvidiatesla_r410Range<412.36

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
17 Feb 2020 00:00Current
7.1High risk
Vulners AI Score7.1
CVSS 25.7
CVSS 37.7
EPSS0.00043
dxgkddiEscapenvidia graphicsdata synchronizationsystem crashesprivilege escalationdata disclosure
2