Lucene search

[email protected]CVE-2012-4225

HistoryNov 19, 2012 - 12:10 p.m.

CVE-2012-4225

2012-11-1912:10:00

CWE-264

[email protected]

web.nvd.nist.gov

nvidia

graphics driver

vulnerability

local users

arbitrary memory locations

privileges

/dev/nvidia0

6.3 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

NVIDIA UNIX graphics driver before 295.71 and before 304.32 allows local users to write to arbitrary physical memory locations and gain privileges by modifying the VGA window using /dev/nvidia0.

CPENameOperatorVersion
nvidia:unix_graphic_drivernvidia unix graphic driverle295.71
nvidia:unix_graphic_drivernvidia unix graphic driverle304.32

CPE	Name	Operator	Version
nvidia:unix_graphic_driver	nvidia unix graphic driver	le	295.71
nvidia:unix_graphic_driver	nvidia unix graphic driver	le	304.32

References

nvidia.custhelp.com/app/answers/detail/a_id/3140

seclists.org/fulldisclosure/2012/Aug/4

seclists.org/fulldisclosure/2012/Aug/76

security.gentoo.org/glsa/glsa-201304-01.xml

www.openwall.com/lists/oss-security/2012/08/01/1

www.openwall.com/lists/oss-security/2012/08/08/4

6.3 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

Related for CVE-2012-4225

ubuntucve1 prion1 debiancve1 openvas3 gentoo1 nessus2 freebsd1