81 matches found
CVE-2024-0107
CVE-2024-0107 is an out-of-bounds read in the NVIDIA GPU Display Driver for Windows user-mode layer. Public findings (Talos TALOS-2024-1956) describe exploitation via a malformed shader in the NVIDIA GPU Compiler Driver, affecting NVIDIA GPU Driver versions such as 551.61 and 31.0.15.5161, with p...
CVE-2022-34671
CVE-2022-34671 affects the NVIDIA GPU Display Driver for Windows. The vulnerability is in the driver’s user‑mode layer where an unprivileged user can trigger an out‑of‑bounds write, potentially enabling code execution, information disclosure, or denial of service. Connected documents corroborate ...
CVE-2024-0089
CVE-2024-0089 affects the NVIDIA GPU Display Driver for Windows. The vulnerability allows information from a previous client or another process to be disclosed, with potential consequences including code execution, information disclosure, and data tampering. According to NVIDIA’s June 2024 securi...
CVE-2023-0184
Technical details for CVE-2023-0184 are not publicly provided in the supplied connected documents. The available records mention a kernel-mode driver issue but do not specify affected versions, remediation, or exploits. Monitor for updates.
CVE-2021-1094
CVE-2021-1094 affects the NVIDIA GPU Display Driver for Windows and Linux, with a vulnerability in the kernel-mode layer (nvlddmkm.sys) handling of DxgkDdiEscape. An out-of-bounds array access may enable denial of service or information disclosure. Publicly documented mitigations include vendor/O...
CVE-2022-28181
NVIDIA GPU Display Driver for Windows and Linux is affected by CVE‑2022‑28181 in the kernel mode layer. A specially crafted shader could trigger an out‑of‑bounds write by an unprivileged network user, potentially enabling code execution, denial of service, privilege/escalation, information disclo...
CVE-2022-31617
CVE-2022-31617 affects NVIDIA GPU Display Driver for Windows (nvlddmkm.sys) where a local user with basic privileges can trigger an out-of-bounds read in the kernel mode layer, potentially enabling code execution, DoS, privilege escalation, information disclosure, or data tampering. The consolida...
CVE-2021-1093
CVE-2021-1093 affects the NVIDIA GPU Display Driver for Windows and Linux. The vulnerability stems from a firmware assert()‑like check in the driver, which can be triggered by a local attacker and may cause an application exit, denial of service, or system crash. Connected advisories confirm mult...
CVE-2021-1095
CVE-2021-1095 affects NVIDIA GPU Display Driver for Windows and Linux. Root cause: kernel‑mode layer nvlddmkm.sys handlers for control calls with embedded parameters may dereference an untrusted pointer, leading to Denial of Service. Impact: local attacker can crash or disrupt the system. Remedia...
CVE-2022-31608
CVE-2022-31608 affects the NVIDIA GPU Display Driver for Linux. The vulnerability lies in an optional D-Bus configuration file, where a local user with basic capabilities can impact protected D-Bus endpoints, potentially enabling code execution, denial of service, privilege escalation, informatio...
CVE-2021-1076
CVE-2021-1076 affects NVIDIA GPU Display Driver for Windows and Linux (kernel mode drivers nvlddmkm.sys / nvidia.ko). The vulnerability arises from improper access control in the kernel-mode component, potentially allowing denial of service, information disclosure, or data corruption. Connected a...
CVE-2022-31610
CVE-2022-31610 concerns the NVIDIA GPU Display Driver for Windows. The vulnerability resides in the kernel-mode layer (nvlddmkm.sys) and can be triggered by a local user with basic capabilities, causing an out-of-bounds write. This may lead to code execution, denial of service, privilege escalati...
CVE-2019-5676
CVE-2019-5676 affects NVIDIA Windows GPU Display Driver installer where DLLs are loaded without validating path or signature (binary planting). This local, pre-auth escalation could allow code execution if a malicious DLL is placed on the system. Documents identify affected drivers/updates, inclu...
CVE-2022-31606
CVE-2022-31606 affects the NVIDIA GPU Display Driver for Windows. The vulnerability resides in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where improper validation can allow a local attacker with basic user privileges to trigger out-of-bounds kernel-mode access, potentially l...
CVE-2022-31616
CVE-2022-31616 details (concrete): The vulnerability affects the NVIDIA GPU Display Driver for Windows, specifically the kernel-mode handler nvlddmkm.sys DxgkDdiEscape. A local user with basic privileges can trigger an out-of-bounds read, leading to either denial of service or information disclos...
CVE-2022-21813
CVE-2022-21813 affects NVIDIA GPU Display Driver for Linux. The vulnerability resides in the kernel driver and can allow an unprivileged local user to perform limited writes to protected memory, resulting in denial of service. Public details consistently describe the affected component as NVIDIA’...
CVE-2022-31615
CVE-2022-31615 affects NVIDIA GPU Display Driver for Linux where the kernel mode layer (nvidia.ko) contains a vulnerability allowing a local user with basic privileges to trigger a null-pointer dereference, potentially causing denial of service. The related Gentoo GLSA and Mageia advisories corro...
CVE-2022-34665
CVE-2022-34665 affects the NVIDIA GPU Display Driver for Windows and Linux, with a vulnerability in the kernel mode layer that a local user with basic capabilities can trigger a null-pointer dereference, leading to a denial of service. The connected documents provide concrete technical context: k...
CVE-2022-31607
CVE-2022-31607 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel mode driver (nvidia.ko). A local user with basic privileges can trigger improper input validation, leading to denial of service, privilege escalation, data tampering, and partial information disclosure. Connec...
CVE-2022-31612
CVE-2022-31612 concerns the NVIDIA GPU Display Driver for Windows. The kernel-mode layer (nvlddmkm.sys)’s DxgkDdiEscape handler allows a local user with basic privileges to trigger an out-of-bounds read, potentially causing a system crash or leaking internal kernel information. The provided docum...
CVE-2024-0091
CVE-2024-0091 affects NVIDIA GPU Display Driver for Windows and Linux, enabling an untrusted pointer dereference via a driver API and potentially causing denial of service, information disclosure, and data tampering. The vulnerability is rated CVSS v3.1 base 7.8 (HIGH) with local attack vector an...
CVE-2021-1089
CVE-2021-1089 affects NVIDIA GPU Display Driver for Windows, with a vulnerability in nvidia-smi that allows an uncontrolled DLL loading path, potentially enabling local arbitrary code execution, denial of service, information disclosure, or data tampering. NVIDIA’s security bulletin lists Windows...
CVE-2021-1090
CVE-2021-1090 affects the NVIDIA GPU Display Driver for Windows and Linux, specifically the kernel-mode nvlddmkm.sys handler for control calls. The vulnerability arises when the driver reads or writes to a buffer using an index or pointer that references memory after the buffer end, enabling data...
CVE-2022-28189
CVE-2022-28189 affects the NVIDIA GPU Display Driver for Windows. It targets the kernel-mode nvlddmkm.sys DxgkDdiEscape handler and causes a NULL pointer dereference that may crash the system. Public disclosures in the provided sources confirm this vulnerability and note vendor patches. NVIDIA/dr...
CVE-2022-42257
CVE-2022-42257 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel mode layer (nvidia.ko). The public description states an integer overflow in this component may lead to information disclosure, data tampering, or denial of service. Connected sources corroborate affected fami...
CVE-2021-1091
The CVE-2021-1091 issue affects the NVIDIA GPU Display Driver for Windows. A local, unprivileged user can create a hard link that causes the driver to overwrite a file needing elevated privileges, potentially leading to data loss or denial of service. The issue is tied to the Windows driver’s han...
CVE-2022-31613
CVE-2022-31613 affects the NVIDIA GPU Display Driver for Windows. The vulnerability is in the kernel-mode layer (nvlddmkm.sys) and can be exploited by a local user to trigger a null-pointer dereference, potentially causing a kernel panic and impacting system stability. Sources describe the issue ...
CVE-2022-21814
CVE-2022-21814 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel driver package. The vulnerability arises from improper handling of permissions/privileges, potentially allowing an unprivileged local user to obtain limited write access to protected memory, which can lead to ...
CVE-2022-28183
CVE-2022-28183 affects NVIDIA GPU Display Driver for Windows and Linux, in the kernel mode layer. An unprivileged user can trigger an out-of-bounds read, causing denial of service and information disclosure. Reports across multiple sources confirm the issue and note patches/upgrades are required ...
CVE-2022-42265
The CVE entry CVE-2022-42265 concerns the NVIDIA GPU Display Driver for Linux, where the kernel-mode nvidia.ko contains an integer overflow in the kernel-mode layer handler. This can allow a local attacker with LOW privileges to cause information disclosure or data tampering, with no user interac...
CVE-2022-34674
CVE-2022-34674 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel-mode layer handler where a helper function may map more physical pages than requested. This can cause undefined behavior or information leakage. Public documents consistently describe the issue as a Linux driv...
CVE-2021-1096
CVE-2021-1096 affects the NVIDIA Windows GPU Display Driver for Windows. The vulnerability is in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where a dereferenced NULL pointer can cause a system crash. Public references in the NVIDIA security bulletin indicate remediation by dr...
CVE-2022-28184
CVE-2022-28184 affects NVIDIA GPU Display Driver (Windows/Linux) in the kernel mode layer nvlddmkm.sys, specifically the DxgkDdiEscape handler. An unprivileged local user can access administrator-privileged registers, potentially causing denial of service, information disclosure, and data tamperi...
CVE-2021-1092
CVE-2021-1092 affects the NVIDIA GPU Display Driver for Windows (NVIDIA Control Panel component). The vulnerability is a Windows file system symbolic link attack in the Control Panel that could allow an unprivileged local attacker to trigger the driver to overwrite privileged files, potentially c...
CVE-2022-21815
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for private IOCTLs where a NULL pointer dereference, created from user mode code, may cause a system crash (DoS). Affected software is the Windows NVIDIA GPU Display Driver; the issue is...
CVE-2022-34680
CVE-2022-34680 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel mode layer handler where an integer truncation can cause an out-of-bounds read, potentially leading to a denial of service. The vulnerability is documented across multiple sources (NVD entry and Debian securit...
CVE-2021-1075
CVE-2021-1075 (NVIDIA Windows GPU Display Driver) affects NVIDIA GPU Display Driver for Windows, in which the kernel-mode driver component nvlddmkm.sys erroneously dereferences a pointer to memory that may no longer be valid when handling DxgkDdiEscape. This can lead to code execution, denial of ...
CVE-2022-34677
CVE-2022-34677 affects the NVIDIA GPU Display Driver for Linux, in the kernel mode layer handler where an unprivileged user can trigger an integer truncation, potentially causing denial of service or data tampering. Public docs indicate this vulnerability is addressed in Debian’s legacy-390xx upd...
CVE-2023-0190
CVE-2023-0190 affects the NVIDIA GPU Display Driver for Linux. The vulnerability is in the kernel mode layer and is a NULL pointer dereference that may lead to denial of service. CVSS metrics indicate a local attack vector with low privileges required and no user interaction, yielding a Medium se...
CVE-2021-1074
CVE-2021-1074 affects the NVIDIA Windows GPU Display Driver installer. The vulnerability enables a local-privilege attacker with system access to replace an application resource with malicious files during a narrow window between file integrity validation and execution, potentially enabling code ...
CVE-2022-34670
CVE-2022-34670 affects NVIDIA GPU Display Driver for Linux. The kernel-mode layer handler vulnerability allows an unprivileged user to trigger truncation when casting a primitive to a smaller primitive, potentially causing denial of service or information disclosure. Debian LTS advisory DLA-3418 ...
CVE-2022-28188
CVE-2022-28188 affects the NVIDIA GPU Display Driver for Windows, specifically the kernel-mode nvlddmkm.sys DxgkDdiEscape handler. The issue is a validation flaw where input data may not be properly validated, potentially enabling a denial-of-service condition. Documents consistently describe thi...
CVE-2022-42254
NVIDIA GPU Display Driver for Linux contains a kernel module (nvidia.ko) vulnerability: an out-of-bounds array access that may lead to denial of service, data tampering, or information disclosure (CVE-2022-42254). The provided documents identify the affected component and impact, but do not speci...
CVE-2022-42258
CVE-2022-42258 affects the Linux NVIDIA GPU Display Driver (kernel mode layer nvidia.ko). The vulnerability is described as an integer overflow in the kernel-mode code that can lead to denial of service, data tampering, or information disclosure. Public references in the connected documents confi...
CVE-2022-42259
CVE-2022-42259 relates to the NVIDIA GPU Display Driver for Linux, specifically the kernel mode layer handler in the nvidia.ko module. Affected component: NVIDIA GPU Display Driver for Linux (kernel mode layer). Root cause: an integer overflow in the nvidia.ko code path can permit a denial of ser...
CVE-2023-25515
CVE-2023-25515 affects NVIDIA GPU Display Driver for Windows and Linux. The issue is described as parsing of unexpected untrusted data that may lead to code execution, denial of service, privilege escalation, data tampering, or information disclosure. Public advisories (NVIDIA security bulletin, ...
CVE-2022-42261
CVE-2022-42261 affects NVIDIA vGPU software, specifically the Virtual GPU Manager (vGPU plugin). The issue is an input index that is not validated, which can cause a buffer overrun. Impacts cited in sources include data tampering, information disclosure, or denial of service. The provided documen...
CVE-2022-42264
CVE-2022-42264 refers to a vulnerability in the NVIDIA GPU Display Driver for Linux, specifically in the kernel-mode layer (nvidia.ko) that allows an unprivileged local user to trigger an out-of-range pointer offset. This can lead to data tampering, data loss, information disclosure, or denial of...
CVE-2021-1077
NVIDIA GPU Display Driver vulnerabilities (CVE-2021-1077) affect the NVIDIA GPU Display Driver for Linux and Windows; the Linux kernel/Linux driver (nvidia.ko) or Windows driver (nvlddmkm.sys) may mishandle a reference count, leading to denial of service. Public sources across Nessus, Ubuntu USN-...
CVE-2022-28182
The CVE-2022-28182 issue concerns the NVIDIA GPU Display Driver for Windows, specifically the DirectX11 user mode driver (nvwgf2um/x.dll). A network attacker can trigger an out-of-bounds write via a crafted shader, potentially enabling code execution and leading to DoS, privilege escalation, info...