Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.NVIDIA_WIN_2024_7.NASLHistoryJul 25, 2024 - 12:00 a.m.
NVIDIA Windows GPU Display Driver (July 2024)
2024-07-2500:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
4
nvidia
windows
display driver
vulnerability
user mode
out-of-bounds read
code execution
denial of service
privilege escalation
information disclosure
data tampering
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8
Confidence
High
EPSS
0
Percentile
9.5%
A display driver installed on the remote Windows host is affected by the following:
- NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged regular user can cause an out-of-bounds read. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Note that Nessus has not attempted to exploit these issues but has instead relied only on the driver’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
include('compat.inc');
if (description)
{
script_id(204694);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/09/18");
script_cve_id("CVE-2024-0107");
script_xref(name:"IAVA", value:"2024-A-0445");
script_name(english:"NVIDIA Windows GPU Display Driver (July 2024)");
script_set_attribute(attribute:"synopsis", value:
"The NVIDIA GPU display driver software on the remote Windows host is missing a vendor-supplied patch.");
script_set_attribute(attribute:"description", value:
"A display driver installed on the remote Windows host is affected by the following:
- NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged
regular user can cause an out-of-bounds read. A successful exploit of this vulnerability might lead to code
execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Note that Nessus has not attempted to exploit these issues but has instead relied only on the driver's
self-reported version number.");
script_set_attribute(attribute:"see_also", value:"https://nvidia.custhelp.com/app/answers/detail/a_id/5557");
script_set_attribute(attribute:"solution", value:
"Upgrade the NVIDIA graphics driver in accordance with the vendor advisory.");
script_set_attribute(attribute:"agent", value:"windows");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-0107");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2024/07/09");
script_set_attribute(attribute:"patch_publication_date", value:"2024/07/09");
script_set_attribute(attribute:"plugin_publication_date", value:"2024/07/25");
script_set_attribute(attribute:"potential_vulnerability", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:nvidia:gpu_driver");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Windows");
script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("wmi_enum_display_drivers.nbin");
script_require_keys("WMI/DisplayDrivers/NVIDIA", "Settings/ParanoidReport");
exit(0);
}
include('vcf_extras_nvidia.inc');
var app_info = vcf::nvidia_gpu::get_app_info(win_local:TRUE);
if (report_paranoia < 2)
audit(AUDIT_PARANOID);
var constraints = [
{'min_version': '470', 'fixed_version': '475.14', 'gpumodel':['nvs', 'quadro', 'rtx', 'tesla', 'geforce']},
{'min_version': '535', 'fixed_version': '538.78', 'gpumodel':['nvs', 'quadro', 'rtx', 'tesla']},
{'min_version': '550', 'fixed_version': '552.74', 'gpumodel':['nvs', 'quadro', 'rtx', 'tesla']},
{'min_version': '555', 'fixed_version': '556.12', 'gpumodel':['geforce']}
];
vcf::nvidia_gpu::check_version_and_report(
app_info:app_info,
constraints:constraints,
severity:SECURITY_WARNING
);
Related
cve
cve
CVE-2024-0107
2024-08-08 17:15:18
talos
talos
cvelist
cvelist
CVE-2024-0107
2024-08-08 16:57:49
vulnrichment
vulnrichment
CVE-2024-0107
2024-08-08 16:57:49
nvidia
nvidia
Security Bulletin: NVIDIA GPU Display Driver - July 2024
2024-07-09 00:00:00
nvd
nvd
CVE-2024-0107
2024-08-08 17:15:18
talosblog
talosblog
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8
Confidence
High
EPSS
0
Percentile
9.5%
Related for NVIDIA_WIN_2024_7.NASL