72 matches found
CVE-2018-6260
Summary (CVE-2018-6260) NVIDIA’s GPU Display Driver contains a local-information-disclosure vulnerability due to a side channel exposed by GPU performance counters. A local attacker could access data processed on the GPU. The flaw affects NVIDIA Display Driver for Linux and Windows; no remote/vec...
CVE-2017-0341
CVE-2017-0341 affects the NVIDIA Windows GPU Display Driver (kernel mode layer nvlddmkm.sys) in DxgDdiEscape, where user input can trigger an access to an uninitialized pointer, potentially causing denial of service or privilege escalation. The connected material also documents related CVEs (0342...
CVE-2017-0350
CVE-2017-0350 affects NVIDIA GPU Display Driver. A vulnerability in the kernel mode layer handler arises from improper validation of user-supplied values used in offset calculations, potentially enabling denial of service or privilege escalation. In affected Linux drivers, versions 375.x prior to...
CVE-2017-6266
CVE-2017-6266 affects the NVIDIA GPU Display Driver’s kernel mode layer handler, where improper access controls could allow unprivileged users to cause a denial of service. Connected advisories note related CVEs (6267, 6272) and indicate upstream fixes; for example, Arch Linux ASA-201709-22 fixes...
CVE-2017-0321
CVE-2017-0321 affects NVIDIA GPU Display Driver kernels in both Linux and Windows, caused by a NULL pointer dereference in the kernel mode layer handler when given invalid user input. The vulnerability may allow a local attacker to cause a denial of service and potentially escalate privileges. Pu...
CVE-2017-6251
CVE-2017-6251 affects the NVIDIA Windows GPU Display Driver, specifically the kernel mode layer handler (nvlddmkm.sys). The root cause is a missing permissions check, allowing a user to access arbitrary physical system memory and potentially escalate privileges. Public connected documentation con...
CVE-2017-0318
CVE-2017-0318 affects all versions of the NVIDIA Linux GPU Display Driver. The vulnerability is in the kernel mode layer handler, where improper validation of an input parameter may cause a denial of service on the system. No specific patch/version/fix is provided in the connected documents; deta...
CVE-2017-0323
CVE-2017-0323 affects NVIDIA Windows GPU Display Driver. The provided documents describe a vulnerability in the kernel-mode layer handler (nvlddmkm.sys) where a NULL pointer dereference caused by invalid user input may lead to denial of service or potential privilege escalation. The incident is d...
CVE-2017-0309
NVIDIA GPU Display Driver is affected (Linux and Windows) by CVE-2017-0309 and related CVEs due to integer overflows in the kernel mode layer handler, causing denial of service and potential privilege escalation. Linux driver lines: 304.x<304.135, 340.x<340.102, 361.x<361.119, 375.x<3...
CVE-2017-0352
NVIDIA GPU Display Driver vulnerability (CVE-2017-0352) affects all versions of the NVIDIA GPU Display Driver. The issue is in the GPU firmware with incorrect access control that may permit CPU access to sensitive GPU control registers, enabling local privilege escalation. Multiple connected sour...
CVE-2017-0313
CVE-2017-0313 affects the NVIDIA Windows GPU Display Driver (nvlddmkm.sys) in the SubmitCommandVirtual DDI (DxgkDdiSubmitCommandVirtual). The issue is an out-of-bounds/read/write condition caused by untrusted input referencing memory outside the buffer, leading to denial of service or local privi...
CVE-2017-6257
CVE-2017-6257 affects the NVIDIA GPU Display Driver (kernel-mode layer handler). The vulnerability is a NULL pointer dereference that can cause a denial of service or potentially escalate privileges. It is described as a local‑impact issue with low attack complexity (local access, no user interac...
CVE-2018-6251
CVE-2018-6251 affects the NVIDIA Windows GPU Display Driver, specifically the DirectX 10 Usermode driver. A specially crafted pixel shader can cause writing to unallocated memory, leading to denial of service or potential code execution. This vulnerability is reported across multiple feeds (NVD, ...
CVE-2017-0311
CVE-2017-0311 : NVIDIA GPU Display Driver R378 contains a vulnerability in the kernel mode layer handler where improper access control may lead to denial of service or possible escalation of privileges. A local attacker could exploit this with low attack complexity (LOCAL vector, no authenticatio...
CVE-2017-0317
CVE-2017-0317 concerns the NVIDIA GPU and GeForce Experience installer on Windows. The vulnerability arises from improper permissions on the package extraction path, which could allow a non-privileged user to tamper with extracted files and potentially escalate to code execution. The connected Ne...
CVE-2017-0312
The CVE-2017-0312 issue affects the NVIDIA Windows GPU Display Driver (nvlddmkm.sys) in the DxgkDdiEscape handler for ID 0x100008b. A user-supplied value is used as the loop limit, enabling denial of service or potential privilege escalation. Affected driver branches include 375.x (prior to 376.6...
CVE-2017-0315
CVE-2017-0315 affects the NVIDIA Windows GPU Display Driver. The issue resides in the kernel-mode layer handler nvlddmkm.sys, specifically the DxgkDdiEscape path, where an attempt to access an invalid object pointer can cause denial of service or potentially escalate privileges. It is described a...
CVE-2018-6253
CVE-2018-6253 affects NVIDIA GPU Display Driver with a flaw in the DirectX and OpenGL Usermode drivers: a specially crafted pixel shader can cause infinite recursion, leading to denial of service. The vulnerability is detailed across multiple disclosures (NVD CVSS 2.0/3.0 showing MEDIUM base seve...
CVE-2019-5670
CVE-2019-5670 affects NVIDIA GeForce Windows GPU Display Driver. A flaw in the kernel-mode DxgkDdiEscape handler uses an incorrect length when reading/writing a buffer, causing out-of-bounds access and potential local escalation of privileges, code execution, denial of service, or information dis...
CVE-2017-6267
NVIDIA GPU Display Driver kernels-mode layer handler contains a vulnerability (CVE-2017-6267) where improper initialization of internal objects can cause an infinite loop, leading to denial of service. The issue affects NVIDIA graphics drivers; Arch Linux ASAs and related advisories note the fixe...
CVE-2017-0310
CVE-2017-0310 involves the NVIDIA GPU Display Driver’s kernel-mode layer handler, where improper access controls allow an unprivileged user to trigger a denial of service. The Initial Description notes vulnerability across all driver versions. Connected documents corroborate a local-impact kernel...
CVE-2017-0345
The CVE-2017-0345 case maps to the NVIDIA Windows GPU Display Driver (nvlddmkm.sys) kernel mode handler DxgDdiEscape, where user-provided input used as an array size is not properly validated, enabling out-of-bounds kernel memory access and potentially causing denial of service or privilege escal...
CVE-2017-0351
CVE-2017-0351 affects the NVIDIA GPU Display Driver. The kernel mode layer handler contains a NULL pointer dereference caused by invalid user input, leading to denial of service and potential privilege escalation. Documents consistently describe this vulnerability across multiple advisories and p...
CVE-2018-6249
CVE-2018-6249 refers to a vulnerability in the NVIDIA GPU Display Driver where the kernel-mode layer handler dereferences a NULL pointer, potentially enabling denial of service or privilege escalation. The issue is described across multiple sources as affecting NVIDIA’s GPU display driver softwar...
CVE-2019-5666
CVE-2019-5666 affects the NVIDIA GPU Display Driver (kernel mode nvlddmkm.sys) for Windows and Linux. The issue arises in the DxgkDdiCreateContext path, where untrusted input is used to calculate or reference an array index without proper validation, enabling potential denial of service or privil...
CVE-2016-8823
CVE-2016-8823 affects the NVIDIA Windows GPU Display Driver (kernel mode nvlddmkm.sys) and arises from the DxgDdiEscape handler, where the input buffer size is not validated. The issue enables local access to cause a denial of service or possible privilege escalation. Public details describe a lo...
CVE-2017-0319
Talos’ vulnerability report confirms CVE-2017-0319 is a heap overflow in Poppler-0.53.0 affecting the image rendering path DCTStream::readProgressiveSOF(). A crafted PDF can trigger heap corruption via an oversized color components count during image rendering, enabling potential code execution o...
CVE-2017-0324
The CVE-2017-0324 case concerns the NVIDIA Windows GPU Display Driver, where the kernel-mode driver component nvlddmkm.sys mishandles input buffer sizing in the DxgkDdiEscape path. The vulnerability can lead to denial of service or, in some cases, elevation of privileges. Public details across co...
CVE-2017-0353
CVE-2017-0353 affects the NVIDIA Windows GPU Display Driver, specifically the kernel-mode handler DxgDdiEscape in the nvlddmkm.sys component. The root cause is improper locking under certain conditions, which can lead to a denial of service and, potentially, privilege escalation in local contexts...
CVE-2017-0349
NVIDIA Windows GPU Display Driver (nvlddmkm.sys) contains a vulnerability in the kernel mode layer handler DxgkDdiEscape where a user-supplied pointer is not validated before dereference, potentially causing denial of service or elevation of privileges. Affected: NVIDIA Windows GPU Display Driver...
CVE-2017-6259
The CVE-2017-6259 entry affects the NVIDIA GPU Display Driver, involving a vulnerability in the kernel mode layer handler where incorrect detection/recovery from an invalid state can lead to denial of service. Affected component is the NVIDIA GPU Display Driver (kernel mode layer handler). Impact...
CVE-2017-6268
NVIDIA Windows GPU Display Driver (nvlddmkm.sys) contains a vulnerability in the DxgkDdiEscape handler where a user-supplied value is not validated before being used as an array index, potentially causing denial of service or privilege escalation. Root cause: improper validation of user input pas...
CVE-2018-6247
CVE-2018-6247 affects NVIDIA Windows GPU Display Driver (kernel mode nvlddmkm.sys, DxgkDdiEscape). A NULL pointer dereference may cause denial of service or elevation of privileges. Connected sources also describe related CVEs (6248–6253) affecting the same driver family and advise updating to a ...
CVE-2016-8826
CVE-2016-8826 affects NVIDIA GPU Display Driver. The vulnerability exists in the kernel-mode layer (nvlddmkm.sys on Windows, nvidia.ko on Linux) and can allow a local attacker to trigger a GPU interrupt storm, resulting in a denial of service. Multiple OpenVAS/Nessus/Mageia/U buntu advisories ref...
CVE-2017-0342
CVE-2017-0342 affects the NVIDIA Windows GPU Display Driver, specifically the kernel mode layer handler in nvlddmkm.sys. The vulnerability arises from incorrect calculations leading to an invalid address access in the DxgDdiEscape/related paths, enabling a local attacker to cause a denial of serv...
CVE-2019-5668
CVE-2019-5668 refers to a vulnerability in the NVIDIA Windows GPU Display Driver’s kernel mode layer (nvlddmkm.sys), specifically the DxgkDdiSubmitCommandVirtual handler where a NULL pointer is dereferenced. The description and connected sources confirm the impact as denial of service or privileg...
CVE-2016-8825
NVIDIA Windows GPU Display Driver (nvlddmkm.sys) contains a vulnerability in the DxgDdiEscape handler where input buffer size is not validated, enabling local attackers to cause denial of service or privilege escalation. Affected are older Windows GPU drivers (e.g., 340.x before 342.01 and 375.x ...
CVE-2017-6260
Summary: CVE-2017-6260 affects the NVIDIA Windows GPU Display Driver, involving a vulnerability in the kernel mode layer helper function where an incorrect calculation of string length may lead to denial of service. The connected documents corroborate a kernel-mode issue in nvlddmkm-related paths...
CVE-2016-8818
CVE-2016-8818 affects the NVIDIA Windows GPU Display Driver, specifically the kernel-mode layer nvlddmkm.sys handling of DxgDdiEscape. A user-supplied pointer is used without validation, enabling potential denial of service or privilege escalation on affected Windows systems. Public details acros...
CVE-2017-0314
CVE-2017-0314 affects the NVIDIA Windows GPU Display Driver (nvlddmkm.sys) in the kernel-mode layer for the SubmitCommandVirtual DDI. Untrusted input can reference memory outside the intended buffer boundary, leading to denial of service or elevation of privileges . The description indicates the ...
CVE-2017-0355
Summary: CVE-2017-0355 affects NVIDIA Windows GPU Display Driver. The vulnerability exists in the kernel mode layer handler for DxgkDdiEscape, where the driver may access paged memory while holding a spinlock, enabling a potential denial-of-service condition. This is part of a family of related f...
CVE-2017-6270
The CVE-2017-6270 issue affects the NVIDIA Windows GPU Display Driver, specifically the kernel mode layer handler DxgkDdiCreateAllocation. Untrusted user input is used as a divisor without validation during a calculation, which may lead to division-by-zero and denial of service. Impact is limited...
CVE-2018-6248
CVE-2018-6248 affects NVIDIA Windows GPU Display Driver, specifically the kernel mode layer handler DxgkDdiEscape. The issue is an out-of-bounds memory access caused by reading/writing a buffer with an incorrect length value, leading to denial of service and potential privilege escalation. Multip...
CVE-2019-5667
Summary of CVE-2019-5667 : NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel-mode layer (nvlddmkm.sys) handler for DxgkDdiSetRootPageTable, where a pointer expected to be valid is NULL, potentially enabling code execution, denial of service, or privilege escalation. Affecte...
CVE-2016-8814
NVIDIA Windows GPU Display Driver (nvlddmkm.sys) contains a set of local, kernel-mode vulnerabilities in the DxgDdiEscape/DxgkDdiEscape handlers. The issues arise from using pointers without NULL checks or validating user-supplied input, leading to denial of service and potential privilege escala...
CVE-2016-8821
The CVE-2016-8821 family affects NVIDIA Windows GPU Display Driver (nvlddmkm.sys) and relates to the kernel-mode DxgDdiEscape handler, where improper access controls may allow a user to access arbitrary physical memory and escalate privileges. Connected sources describe multiple related CVEs (CVE...
CVE-2017-0308
NVIDIA Windows GPU Display Driver (nvlddmkm.sys)DxgkDdiEscape handling in the kernel-mode layer is vulnerable. The issue (CVE-2017-0308) arises from untrusted input used to calculate the input buffer size, which can lead to denial of service or elevation of privileges. The connected Nessus entry ...
CVE-2017-0320
Summary: NVIDIA Windows GPU Display Driver vulnerable in the kernel mode layer handler (nvlddmkm.sys) where improper handling of values can cause denial of service. This CVE-2017-0320 is cited among a set of kernel-mode vulnerabilities affecting NVIDIA 375.x/378.x driver branches and related comp...
CVE-2017-0348
CVE-2017-0348 affects the NVIDIA Windows GPU Display Driver. The vulnerability is a NULL pointer dereference in the kernel-mode handler nvlddmkm.sys, which may cause denial of service or potentially escalate privileges. Affected product: NVIDIA Windows GPU Display Driver (kernel-mode layer). Root...
CVE-2017-6252
CVE-2017-6252 affects the NVIDIA Windows GPU Display Driver. The vulnerability exists in the kernel mode layer handler (likely nvlddmkm.sys) where a NULL pointer dereference can cause a denial of service or potential privilege escalation. Affected product area is the NVIDIA Windows GPU Display Dr...