29 matches found
CVE-2024-0107
CVE-2024-0107 is an out-of-bounds read in the NVIDIA GPU Display Driver for Windows user-mode layer. Public findings (Talos TALOS-2024-1956) describe exploitation via a malformed shader in the NVIDIA GPU Compiler Driver, affecting NVIDIA GPU Driver versions such as 551.61 and 31.0.15.5161, with p...
CVE-2022-34671
CVE-2022-34671 affects the NVIDIA GPU Display Driver for Windows. The vulnerability is in the driver’s user‑mode layer where an unprivileged user can trigger an out‑of‑bounds write, potentially enabling code execution, information disclosure, or denial of service. Connected documents corroborate ...
CVE-2024-0089
CVE-2024-0089 affects the NVIDIA GPU Display Driver for Windows. The vulnerability allows information from a previous client or another process to be disclosed, with potential consequences including code execution, information disclosure, and data tampering. According to NVIDIA’s June 2024 securi...
CVE-2023-0184
Technical details for CVE-2023-0184 are not publicly provided in the supplied connected documents. The available records mention a kernel-mode driver issue but do not specify affected versions, remediation, or exploits. Monitor for updates.
CVE-2022-31608
CVE-2022-31608 affects the NVIDIA GPU Display Driver for Linux. The vulnerability lies in an optional D-Bus configuration file, where a local user with basic capabilities can impact protected D-Bus endpoints, potentially enabling code execution, denial of service, privilege escalation, informatio...
CVE-2022-31615
CVE-2022-31615 affects NVIDIA GPU Display Driver for Linux where the kernel mode layer (nvidia.ko) contains a vulnerability allowing a local user with basic privileges to trigger a null-pointer dereference, potentially causing denial of service. The related Gentoo GLSA and Mageia advisories corro...
CVE-2022-31607
CVE-2022-31607 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel mode driver (nvidia.ko). A local user with basic privileges can trigger improper input validation, leading to denial of service, privilege escalation, data tampering, and partial information disclosure. Connec...
CVE-2022-42257
CVE-2022-42257 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel mode layer (nvidia.ko). The public description states an integer overflow in this component may lead to information disclosure, data tampering, or denial of service. Connected sources corroborate affected fami...
CVE-2022-34674
CVE-2022-34674 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel-mode layer handler where a helper function may map more physical pages than requested. This can cause undefined behavior or information leakage. Public documents consistently describe the issue as a Linux driv...
CVE-2022-34677
CVE-2022-34677 affects the NVIDIA GPU Display Driver for Linux, in the kernel mode layer handler where an unprivileged user can trigger an integer truncation, potentially causing denial of service or data tampering. Public docs indicate this vulnerability is addressed in Debian’s legacy-390xx upd...
CVE-2022-34680
CVE-2022-34680 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel mode layer handler where an integer truncation can cause an out-of-bounds read, potentially leading to a denial of service. The vulnerability is documented across multiple sources (NVD entry and Debian securit...
CVE-2022-34670
CVE-2022-34670 affects NVIDIA GPU Display Driver for Linux. The kernel-mode layer handler vulnerability allows an unprivileged user to trigger truncation when casting a primitive to a smaller primitive, potentially causing denial of service or information disclosure. Debian LTS advisory DLA-3418 ...
CVE-2023-0190
CVE-2023-0190 affects the NVIDIA GPU Display Driver for Linux. The vulnerability is in the kernel mode layer and is a NULL pointer dereference that may lead to denial of service. CVSS metrics indicate a local attack vector with low privileges required and no user interaction, yielding a Medium se...
CVE-2023-25515
CVE-2023-25515 affects NVIDIA GPU Display Driver for Windows and Linux. The issue is described as parsing of unexpected untrusted data that may lead to code execution, denial of service, privilege escalation, data tampering, or information disclosure. Public advisories (NVIDIA security bulletin, ...
CVE-2022-42254
NVIDIA GPU Display Driver for Linux contains a kernel module (nvidia.ko) vulnerability: an out-of-bounds array access that may lead to denial of service, data tampering, or information disclosure (CVE-2022-42254). The provided documents identify the affected component and impact, but do not speci...
CVE-2022-42258
CVE-2022-42258 affects the Linux NVIDIA GPU Display Driver (kernel mode layer nvidia.ko). The vulnerability is described as an integer overflow in the kernel-mode code that can lead to denial of service, data tampering, or information disclosure. Public references in the connected documents confi...
CVE-2022-42259
CVE-2022-42259 relates to the NVIDIA GPU Display Driver for Linux, specifically the kernel mode layer handler in the nvidia.ko module. Affected component: NVIDIA GPU Display Driver for Linux (kernel mode layer). Root cause: an integer overflow in the nvidia.ko code path can permit a denial of ser...
CVE-2022-42264
CVE-2022-42264 refers to a vulnerability in the NVIDIA GPU Display Driver for Linux, specifically in the kernel-mode layer (nvidia.ko) that allows an unprivileged local user to trigger an out-of-range pointer offset. This can lead to data tampering, data loss, information disclosure, or denial of...
CVE-2022-42261
CVE-2022-42261 affects NVIDIA vGPU software, specifically the Virtual GPU Manager (vGPU plugin). The issue is an input index that is not validated, which can cause a buffer overrun. Impacts cited in sources include data tampering, information disclosure, or denial of service. The provided documen...
CVE-2022-34675
The CVE-2022-34675 entry concerns NVIDIA’s Linux Display Driver, specifically the Virtual GPU Manager, where a return value from a null-pointer dereference is not checked, potentially causing denial of service. Public sources in the connected documents confirm the vulnerability, its association t...
CVE-2022-42260
The CVE refers to NVIDIA vGPU Display Driver for Linux guest with a vulnerability in a D-Bus configuration file. An unauthorized user in the guest VM can impact protected D-Bus endpoints, potentially enabling code execution, denial of service, privilege escalation, information disclosure, or data...
CVE-2021-1115
CVE-2021-1115 affects the NVIDIA GPU Display Driver for Windows, specifically the kernel-mode layer (nvlddmkm.sys) handling of private IOCTLs. The bug is a NULL pointer dereference in the kernel, exploitable by a local unprivileged user and may cause a denial of service in a component beyond the ...
CVE-2022-42263
Summary of CVE-2022-42263 – NVIDIA GPU Display Driver for Linux : The vulnerability affects the NVIDIA GPU Display Driver for Linux, specifically in the kernel mode layer handler. The issue is an integer overflow in that kernel-mode component, which the source material describes as potentially en...
CVE-2023-0199
CVE-2023-0199 describes a vulnerability in the NVIDIA GPU Display Driver for Windows and Linux where the kernel-mode layer handler can perform an out-of-bounds write, leading to denial of service and data tampering. The description specifies the affected component as the kernel mode layer handler...
CVE-2022-42262
CVE-2022-42262 affects NVIDIA vGPU software, specifically the Virtual GPU Manager (vGPU plugin). The vulnerability arises from an input index that is not validated, which can cause a buffer overrun. Impact as stated: data tampering, information disclosure, and denial of service. The provided docu...
CVE-2024-0092
CVE-2024-0092 affects NVIDIA GPU Driver for Windows and Linux, with DoS caused by improper check/handling of exception conditions. The CVE is linked to multiple advisories (e.g., SUSE-SU-2024:2585-1) noting fixes such as kernel-firmware-nvidia-gspx-G06 and updated Open Driver packages; NVIDIA/NVD...
CVE-2024-0090
CVE-2024-0090 affects the NVIDIA GPU driver for Windows and Linux, due to an out-of-bounds write in the driver. The confirmed impact includes code execution, denial of service, privilege escalation, information disclosure, and data tampering. Local attack vector with low privilege required per CV...
CVE-2021-1116
CVE-2021-1116 affects NVIDIA GPU Display Driver for Windows, with a vulnerability in nvlddmkm.sys where a NULL pointer dereference in kernel mode, created from user-mode code, may crash the system (DoS). Exploitation is local; impact is system crash/denial of service. Remediation is available: NV...
CVE-2021-1117
NVIDIA Windows GPU Display Driver (nvlddmkm.sys) contains a vulnerability in the DxgkDdiEscape handler that allows a local, unprivileged attacker to trigger improper input validation and cause a denial of service. Affected component is part of the NVIDIA GPU Display Driver for Windows; root cause...