98 matches found
CVE-2024-0107
CVE-2024-0107 is an out-of-bounds read in the NVIDIA GPU Display Driver for Windows user-mode layer. Public findings (Talos TALOS-2024-1956) describe exploitation via a malformed shader in the NVIDIA GPU Compiler Driver, affecting NVIDIA GPU Driver versions such as 551.61 and 31.0.15.5161, with p...
CVE-2024-0089
CVE-2024-0089 affects the NVIDIA GPU Display Driver for Windows. The vulnerability allows information from a previous client or another process to be disclosed, with potential consequences including code execution, information disclosure, and data tampering. According to NVIDIA’s June 2024 securi...
CVE-2022-28181
NVIDIA GPU Display Driver for Windows and Linux is affected by CVE‑2022‑28181 in the kernel mode layer. A specially crafted shader could trigger an out‑of‑bounds write by an unprivileged network user, potentially enabling code execution, denial of service, privilege/escalation, information disclo...
CVE-2022-31617
CVE-2022-31617 affects NVIDIA GPU Display Driver for Windows (nvlddmkm.sys) where a local user with basic privileges can trigger an out-of-bounds read in the kernel mode layer, potentially enabling code execution, DoS, privilege escalation, information disclosure, or data tampering. The consolida...
CVE-2022-31614
CVE-2022-31614 affects NVIDIA vGPU Software in the Virtual GPU Manager (vGPU plugin). The vulnerability stems from a double-free of resources, which could be exploited (in conjunction with other vulnerabilities) to cause denial of service, code execution, and information disclosure on affected NV...
CVE-2022-31610
CVE-2022-31610 concerns the NVIDIA GPU Display Driver for Windows. The vulnerability resides in the kernel-mode layer (nvlddmkm.sys) and can be triggered by a local user with basic capabilities, causing an out-of-bounds write. This may lead to code execution, denial of service, privilege escalati...
CVE-2022-31606
CVE-2022-31606 affects the NVIDIA GPU Display Driver for Windows. The vulnerability resides in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where improper validation can allow a local attacker with basic user privileges to trigger out-of-bounds kernel-mode access, potentially l...
CVE-2023-0189
The connected documents confirm CVE-2023-0189 affects the NVIDIA GPU Display Driver for Linux, specifically a vulnerability in the kernel mode layer handler. The issue can lead to code execution, denial of service, privilege escalation, information disclosure, and data tampering. The vulnerabilit...
CVE-2022-21813
CVE-2022-21813 affects NVIDIA GPU Display Driver for Linux. The vulnerability resides in the kernel driver and can allow an unprivileged local user to perform limited writes to protected memory, resulting in denial of service. Public details consistently describe the affected component as NVIDIA’...
CVE-2022-31616
CVE-2022-31616 details (concrete): The vulnerability affects the NVIDIA GPU Display Driver for Windows, specifically the kernel-mode handler nvlddmkm.sys DxgkDdiEscape. A local user with basic privileges can trigger an out-of-bounds read, leading to either denial of service or information disclos...
CVE-2022-31618
The CVE-2022-31618 issue affects NVIDIA vGPU software, specifically the Virtual GPU Manager (vGPU plugin). The vulnerability is a null pointer dereference in the vGPU component that may cause a denial of service. The advisory information indicates a local attack vector with low privileges and no ...
CVE-2022-31609
NVIDIA vGPU software (Virtual GPU Manager) is affected by CVE-2022-31609. The vulnerability could allow a guest VM to allocate resources beyond its authorization, potentially causing loss of data integrity and confidentiality, denial of service, or information disclosure. Affected component: NVID...
CVE-2022-34665
CVE-2022-34665 affects the NVIDIA GPU Display Driver for Windows and Linux, with a vulnerability in the kernel mode layer that a local user with basic capabilities can trigger a null-pointer dereference, leading to a denial of service. The connected documents provide concrete technical context: k...
CVE-2022-34669
CVE-2022-34669 affects the NVIDIA GPU Display Driver for Windows. The vulnerability resides in the user-mode layer, allowing an unprivileged regular user to access or modify files critical to the application, with potential impacts including code execution, DoS, privilege escalation, information ...
CVE-2023-31022
CVE-2023-31022 involves the NVIDIA GPU Display Driver for Windows and Linux, where a kernel-mode NULL-pointer dereference may cause denial of service. The vulnerability is documented with a local attack vector and a high-availability impact (denial of service) but no confidentiality or integrity ...
CVE-2022-31612
CVE-2022-31612 concerns the NVIDIA GPU Display Driver for Windows. The kernel-mode layer (nvlddmkm.sys)’s DxgkDdiEscape handler allows a local user with basic privileges to trigger an out-of-bounds read, potentially causing a system crash or leaking internal kernel information. The provided docum...
CVE-2024-0091
CVE-2024-0091 affects NVIDIA GPU Display Driver for Windows and Linux, enabling an untrusted pointer dereference via a driver API and potentially causing denial of service, information disclosure, and data tampering. The vulnerability is rated CVSS v3.1 base 7.8 (HIGH) with local attack vector an...
CVE-2023-0180
CVE-2023-0180 : The NVIDIA Linux GPU Display Driver has a kernel-mode layer handler vulnerability that may lead to denial of service or information disclosure. Affected product: NVIDIA Linux GPU Display Driver. Root cause: issue in a kernel-mode layer handler. Impact: local denial of service and ...
CVE-2022-31613
CVE-2022-31613 affects the NVIDIA GPU Display Driver for Windows. The vulnerability is in the kernel-mode layer (nvlddmkm.sys) and can be exploited by a local user to trigger a null-pointer dereference, potentially causing a kernel panic and impacting system stability. Sources describe the issue ...
CVE-2022-42257
CVE-2022-42257 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel mode layer (nvidia.ko). The public description states an integer overflow in this component may lead to information disclosure, data tampering, or denial of service. Connected sources corroborate affected fami...
CVE-2023-0181
CVE-2023-0181 : The NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in a kernel-mode layer handler where memory permissions are not correctly checked, which may lead to denial of service and data tampering . Affected component is the driver’s kernel-mode handling path; ex...
CVE-2021-1098
NVIDIA vGPU Software contains CVE-2021-1098: a vulnerability in the Virtual GPU Manager where it does not release certain resources during driver unload from guests. This can allow a malicious guest to reuse freed resources, potentially leading to information disclosure, data tampering, or denial...
CVE-2022-28183
CVE-2022-28183 affects NVIDIA GPU Display Driver for Windows and Linux, in the kernel mode layer. An unprivileged user can trigger an out-of-bounds read, causing denial of service and information disclosure. Reports across multiple sources confirm the issue and note patches/upgrades are required ...
CVE-2022-34678
CVE-2022-34678 affects NVIDIA GPU Display Driver for Windows and Linux . The vulnerability is in the kernel mode layer and allows an unprivileged user to trigger a null-pointer dereference , resulting in a potential denial of service . The CVE is listed across multiple feeds (NVD, OsV, Gentoo GLS...
CVE-2022-34679
Based on the connected documents, CVE-2022-34679 affects the NVIDIA GPU Display Driver for Linux. The root cause is an unhandled return value in the kernel mode layer handler that can lead to a null-pointer dereference, with impact described as denial of service. The sources consistently describe...
CVE-2023-31017
CVE-2023-31017 : NVIDIA GPU Display Driver for Windows contains a vulnerability that allows an attacker to write arbitrary data to privileged locations via reparse points, potentially enabling code execution, DoS, privilege escalation, information disclosure, or data tampering. Public documentati...
CVE-2021-1097
CVE-2021-1097 affects NVIDIA vGPU software, specifically the Virtual GPU Manager (vGPU plugin). The flaw arises from improper validation of the length field in a guest request, allowing a malicious guest to send a length inconsistent with input, potentially leading to information disclosure, data...
CVE-2022-34674
CVE-2022-34674 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel-mode layer handler where a helper function may map more physical pages than requested. This can cause undefined behavior or information leakage. Public documents consistently describe the issue as a Linux driv...
CVE-2022-34681
CVE-2022-34681 : NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel-mode layer handler (nvlddmkm.sys) where improper input validation of a display-related data structure may lead to a Denial of Service. Affected product: NVIDIA GPU Display Driver for Windows (Windows dri...
CVE-2022-21815
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for private IOCTLs where a NULL pointer dereference, created from user mode code, may cause a system crash (DoS). Affected software is the Windows NVIDIA GPU Display Driver; the issue is...
CVE-2022-34680
CVE-2022-34680 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel mode layer handler where an integer truncation can cause an out-of-bounds read, potentially leading to a denial of service. The vulnerability is documented across multiple sources (NVD entry and Debian securit...
CVE-2022-28184
CVE-2022-28184 affects NVIDIA GPU Display Driver (Windows/Linux) in the kernel mode layer nvlddmkm.sys, specifically the DxgkDdiEscape handler. An unprivileged local user can access administrator-privileged registers, potentially causing denial of service, information disclosure, and data tamperi...
CVE-2022-34677
CVE-2022-34677 affects the NVIDIA GPU Display Driver for Linux, in the kernel mode layer handler where an unprivileged user can trigger an integer truncation, potentially causing denial of service or data tampering. Public docs indicate this vulnerability is addressed in Debian’s legacy-390xx upd...
CVE-2022-34670
CVE-2022-34670 affects NVIDIA GPU Display Driver for Linux. The kernel-mode layer handler vulnerability allows an unprivileged user to trigger truncation when casting a primitive to a smaller primitive, potentially causing denial of service or information disclosure. Debian LTS advisory DLA-3418 ...
CVE-2022-34672
CVE-2022-34672 affects the NVIDIA Control Panel for Windows. The vulnerability allows an unauthorized or unprivileged user to gain privileges, read sensitive information, or execute commands. The issue is part of a broader set of NVIDIA GPU Display Driver vulnerabilities addressed in the November...
CVE-2023-25515
CVE-2023-25515 affects NVIDIA GPU Display Driver for Windows and Linux. The issue is described as parsing of unexpected untrusted data that may lead to code execution, denial of service, privilege escalation, data tampering, or information disclosure. Public advisories (NVIDIA security bulletin, ...
CVE-2022-42266
The CVE-2022-42266 case involves NVIDIA GPU Display Driver for Windows. The underlying issue is in the kernel-mode nvlddmkm.sys DxgkDdiEscape handler, where an unprivileged user could cause exposure of sensitive information to unauthorized actors, leading to limited information disclosure. Affect...
CVE-2023-0194
The CVE-2023-0194 entry concerns the NVIDIA GPU Display Driver for Windows and Linux, where the kernel mode layer driver may mishandle an invalid display configuration, potentially causing denial of service. The available connected documents corroborate a kernel-mode vulnerability in the Windows/...
CVE-2023-31018
The CVE-2023-31018 issue affects the NVIDIA GPU Display Driver for Windows and Linux. A vulnerability in the kernel mode layer could allow an unprivileged local user to trigger a NULL-pointer dereference, potentially causing a denial of service. The connected data confirms this CVE is discussed a...
CVE-2022-42254
NVIDIA GPU Display Driver for Linux contains a kernel module (nvidia.ko) vulnerability: an out-of-bounds array access that may lead to denial of service, data tampering, or information disclosure (CVE-2022-42254). The provided documents identify the affected component and impact, but do not speci...
CVE-2022-42258
CVE-2022-42258 affects the Linux NVIDIA GPU Display Driver (kernel mode layer nvidia.ko). The vulnerability is described as an integer overflow in the kernel-mode code that can lead to denial of service, data tampering, or information disclosure. Public references in the connected documents confi...
CVE-2022-42259
CVE-2022-42259 relates to the NVIDIA GPU Display Driver for Linux, specifically the kernel mode layer handler in the nvidia.ko module. Affected component: NVIDIA GPU Display Driver for Linux (kernel mode layer). Root cause: an integer overflow in the nvidia.ko code path can permit a denial of ser...
CVE-2023-0187
NVIDIA GPU Display Driver for Windows and Linux is affected by CVE-2023-0187. The vulnerability is in the kernel mode layer handler and is caused by an out-of-bounds read, which can lead to a denial of service. Public documents consistently describe the impact as DoS, but do not provide concrete ...
CVE-2023-31021
CVE-2023-31021 is a vulnerability in the NVIDIA vGPU software, specifically in the Virtual GPU Manager (vGPU plugin). A malicious user in a guest VM could trigger a NULL-pointer dereference, which can cause a denial of service. Public sources confirm the issue affects NVIDIA vGPU software for Win...
CVE-2022-28188
CVE-2022-28188 affects the NVIDIA GPU Display Driver for Windows, specifically the kernel-mode nvlddmkm.sys DxgkDdiEscape handler. The issue is a validation flaw where input data may not be properly validated, potentially enabling a denial-of-service condition. Documents consistently describe thi...
CVE-2022-42264
CVE-2022-42264 refers to a vulnerability in the NVIDIA GPU Display Driver for Linux, specifically in the kernel-mode layer (nvidia.ko) that allows an unprivileged local user to trigger an out-of-range pointer offset. This can lead to data tampering, data loss, information disclosure, or denial of...
CVE-2022-42261
CVE-2022-42261 affects NVIDIA vGPU software, specifically the Virtual GPU Manager (vGPU plugin). The issue is an input index that is not validated, which can cause a buffer overrun. Impacts cited in sources include data tampering, information disclosure, or denial of service. The provided documen...
CVE-2023-31027
CVE-2023-31027 affects NVIDIA GPU Display Driver for Windows. The issue lets Windows users with low privileges escalate privileges during administrator driver updates. Several third‑party and vendor feeds (Red Hat, ENISA EUVD, Nessus/NVIDIA bulletins) reference this CVE and confirm it as a Window...
CVE-2022-28192
CVE-2022-28192 affects NVIDIA vGPU software (Virtual GPU Manager, nvidia.ko). The vulnerability is a use-after-free in the driver, where an attacker who can release host resources out of sequence and has elevated privileges may cause a denial of service. Exploitation details are not provided beyo...
CVE-2022-34683
CVE-2022-34683 affects NVIDIA GPU Display Driver for Windows, specifically the kernel-mode nvlddmkm.sys DxgkDdiEscape handler, where a null-pointer dereference may cause Denial of Service. The issue is addressed in NVIDIA’s November 2022 security updates across Windows driver branches (R525, R515...