62 matches found
CVE-2024-0107
CVE-2024-0107 is an out-of-bounds read in the NVIDIA GPU Display Driver for Windows user-mode layer. Public findings (Talos TALOS-2024-1956) describe exploitation via a malformed shader in the NVIDIA GPU Compiler Driver, affecting NVIDIA GPU Driver versions such as 551.61 and 31.0.15.5161, with p...
CVE-2024-0089
CVE-2024-0089 affects the NVIDIA GPU Display Driver for Windows. The vulnerability allows information from a previous client or another process to be disclosed, with potential consequences including code execution, information disclosure, and data tampering. According to NVIDIA’s June 2024 securi...
CVE-2023-0189
The connected documents confirm CVE-2023-0189 affects the NVIDIA GPU Display Driver for Linux, specifically a vulnerability in the kernel mode layer handler. The issue can lead to code execution, denial of service, privilege escalation, information disclosure, and data tampering. The vulnerabilit...
CVE-2022-34669
CVE-2022-34669 affects the NVIDIA GPU Display Driver for Windows. The vulnerability resides in the user-mode layer, allowing an unprivileged regular user to access or modify files critical to the application, with potential impacts including code execution, DoS, privilege escalation, information ...
CVE-2023-31022
CVE-2023-31022 involves the NVIDIA GPU Display Driver for Windows and Linux, where a kernel-mode NULL-pointer dereference may cause denial of service. The vulnerability is documented with a local attack vector and a high-availability impact (denial of service) but no confidentiality or integrity ...
CVE-2024-0091
CVE-2024-0091 affects NVIDIA GPU Display Driver for Windows and Linux, enabling an untrusted pointer dereference via a driver API and potentially causing denial of service, information disclosure, and data tampering. The vulnerability is rated CVSS v3.1 base 7.8 (HIGH) with local attack vector an...
CVE-2023-0180
CVE-2023-0180 : The NVIDIA Linux GPU Display Driver has a kernel-mode layer handler vulnerability that may lead to denial of service or information disclosure. Affected product: NVIDIA Linux GPU Display Driver. Root cause: issue in a kernel-mode layer handler. Impact: local denial of service and ...
CVE-2023-0181
CVE-2023-0181 : The NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in a kernel-mode layer handler where memory permissions are not correctly checked, which may lead to denial of service and data tampering . Affected component is the driver’s kernel-mode handling path; ex...
CVE-2022-34678
CVE-2022-34678 affects NVIDIA GPU Display Driver for Windows and Linux . The vulnerability is in the kernel mode layer and allows an unprivileged user to trigger a null-pointer dereference , resulting in a potential denial of service . The CVE is listed across multiple feeds (NVD, OsV, Gentoo GLS...
CVE-2022-42257
CVE-2022-42257 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel mode layer (nvidia.ko). The public description states an integer overflow in this component may lead to information disclosure, data tampering, or denial of service. Connected sources corroborate affected fami...
CVE-2022-34679
Based on the connected documents, CVE-2022-34679 affects the NVIDIA GPU Display Driver for Linux. The root cause is an unhandled return value in the kernel mode layer handler that can lead to a null-pointer dereference, with impact described as denial of service. The sources consistently describe...
CVE-2023-31017
CVE-2023-31017 : NVIDIA GPU Display Driver for Windows contains a vulnerability that allows an attacker to write arbitrary data to privileged locations via reparse points, potentially enabling code execution, DoS, privilege escalation, information disclosure, or data tampering. Public documentati...
CVE-2022-34674
CVE-2022-34674 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel-mode layer handler where a helper function may map more physical pages than requested. This can cause undefined behavior or information leakage. Public documents consistently describe the issue as a Linux driv...
CVE-2022-34681
CVE-2022-34681 : NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel-mode layer handler (nvlddmkm.sys) where improper input validation of a display-related data structure may lead to a Denial of Service. Affected product: NVIDIA GPU Display Driver for Windows (Windows dri...
CVE-2022-34677
CVE-2022-34677 affects the NVIDIA GPU Display Driver for Linux, in the kernel mode layer handler where an unprivileged user can trigger an integer truncation, potentially causing denial of service or data tampering. Public docs indicate this vulnerability is addressed in Debian’s legacy-390xx upd...
CVE-2022-34680
CVE-2022-34680 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel mode layer handler where an integer truncation can cause an out-of-bounds read, potentially leading to a denial of service. The vulnerability is documented across multiple sources (NVD entry and Debian securit...
CVE-2022-34670
CVE-2022-34670 affects NVIDIA GPU Display Driver for Linux. The kernel-mode layer handler vulnerability allows an unprivileged user to trigger truncation when casting a primitive to a smaller primitive, potentially causing denial of service or information disclosure. Debian LTS advisory DLA-3418 ...
CVE-2022-34672
CVE-2022-34672 affects the NVIDIA Control Panel for Windows. The vulnerability allows an unauthorized or unprivileged user to gain privileges, read sensitive information, or execute commands. The issue is part of a broader set of NVIDIA GPU Display Driver vulnerabilities addressed in the November...
CVE-2023-25515
CVE-2023-25515 affects NVIDIA GPU Display Driver for Windows and Linux. The issue is described as parsing of unexpected untrusted data that may lead to code execution, denial of service, privilege escalation, data tampering, or information disclosure. Public advisories (NVIDIA security bulletin, ...
CVE-2022-42258
CVE-2022-42258 affects the Linux NVIDIA GPU Display Driver (kernel mode layer nvidia.ko). The vulnerability is described as an integer overflow in the kernel-mode code that can lead to denial of service, data tampering, or information disclosure. Public references in the connected documents confi...
CVE-2023-0194
The CVE-2023-0194 entry concerns the NVIDIA GPU Display Driver for Windows and Linux, where the kernel mode layer driver may mishandle an invalid display configuration, potentially causing denial of service. The available connected documents corroborate a kernel-mode vulnerability in the Windows/...
CVE-2022-42254
NVIDIA GPU Display Driver for Linux contains a kernel module (nvidia.ko) vulnerability: an out-of-bounds array access that may lead to denial of service, data tampering, or information disclosure (CVE-2022-42254). The provided documents identify the affected component and impact, but do not speci...
CVE-2022-42259
CVE-2022-42259 relates to the NVIDIA GPU Display Driver for Linux, specifically the kernel mode layer handler in the nvidia.ko module. Affected component: NVIDIA GPU Display Driver for Linux (kernel mode layer). Root cause: an integer overflow in the nvidia.ko code path can permit a denial of ser...
CVE-2022-42266
The CVE-2022-42266 case involves NVIDIA GPU Display Driver for Windows. The underlying issue is in the kernel-mode nvlddmkm.sys DxgkDdiEscape handler, where an unprivileged user could cause exposure of sensitive information to unauthorized actors, leading to limited information disclosure. Affect...
CVE-2023-31018
The CVE-2023-31018 issue affects the NVIDIA GPU Display Driver for Windows and Linux. A vulnerability in the kernel mode layer could allow an unprivileged local user to trigger a NULL-pointer dereference, potentially causing a denial of service. The connected data confirms this CVE is discussed a...
CVE-2023-0187
NVIDIA GPU Display Driver for Windows and Linux is affected by CVE-2023-0187. The vulnerability is in the kernel mode layer handler and is caused by an out-of-bounds read, which can lead to a denial of service. Public documents consistently describe the impact as DoS, but do not provide concrete ...
CVE-2023-31021
CVE-2023-31021 is a vulnerability in the NVIDIA vGPU software, specifically in the Virtual GPU Manager (vGPU plugin). A malicious user in a guest VM could trigger a NULL-pointer dereference, which can cause a denial of service. Public sources confirm the issue affects NVIDIA vGPU software for Win...
CVE-2022-42264
CVE-2022-42264 refers to a vulnerability in the NVIDIA GPU Display Driver for Linux, specifically in the kernel-mode layer (nvidia.ko) that allows an unprivileged local user to trigger an out-of-range pointer offset. This can lead to data tampering, data loss, information disclosure, or denial of...
CVE-2022-42261
CVE-2022-42261 affects NVIDIA vGPU software, specifically the Virtual GPU Manager (vGPU plugin). The issue is an input index that is not validated, which can cause a buffer overrun. Impacts cited in sources include data tampering, information disclosure, or denial of service. The provided documen...
CVE-2023-31027
CVE-2023-31027 affects NVIDIA GPU Display Driver for Windows. The issue lets Windows users with low privileges escalate privileges during administrator driver updates. Several third‑party and vendor feeds (Red Hat, ENISA EUVD, Nessus/NVIDIA bulletins) reference this CVE and confirm it as a Window...
CVE-2022-34683
CVE-2022-34683 affects NVIDIA GPU Display Driver for Windows, specifically the kernel-mode nvlddmkm.sys DxgkDdiEscape handler, where a null-pointer dereference may cause Denial of Service. The issue is addressed in NVIDIA’s November 2022 security updates across Windows driver branches (R525, R515...
CVE-2022-34666
CVE-2022-34666 affects the NVIDIA GPU Display Driver for Windows and Linux. The vulnerability resides in the kernel-mode layer where a local user with basic privileges can trigger a null-pointer dereference, potentially causing a denial of service. The issue is documented across multiple sources,...
CVE-2023-0192
CVE-2023-0192 affects NVIDIA GPU Display Driver for Windows. It is a kernel-mode layer handler issue caused by improper privilege management, leading to escalation of privileges and information disclosure (per initial description). Connected sources confirm the vulnerability in Windows driver con...
CVE-2022-34676
CVE-2022-34676 concerns the NVIDIA GPU Display Driver for Linux. The vulnerability lies in the kernel mode layer handler where an out-of-bounds read may lead to denial of service, information disclosure, or data tampering. The available documents consistently describe the affected component as th...
CVE-2022-34682
CVE-2022-34682 affects NVIDIA GPU Display Driver for Linux in the kernel mode layer. An unprivileged user can trigger a null-pointer dereference, leading to denial of service. Documented in multiple sources (NVD entry; OSV/UBUNTU/Gentoo GLSA references) with the affected component described as th...
CVE-2022-42255
CVE-2022-42255 affects NVIDIA’s Linux GPU Display Driver, specifically the kernel mode driver object nvidia.ko. The vulnerability is an out-of-bounds array access in the kernel mode layer, which can lead to denial of service, information disclosure, or data tampering. Connected sources confirm af...
CVE-2023-31026
The CVE-2023-31026 item concerns NVIDIA vGPU software for Windows and Linux, specifically a vulnerability in the Virtual GPU Manager (vGPU plugin) that permits a NULL-pointer dereference, leading to denial of service. Red Hat’s advisory and the NVIDIA vulnerability coverage corroborate that the i...
CVE-2022-42260
The CVE refers to NVIDIA vGPU Display Driver for Linux guest with a vulnerability in a D-Bus configuration file. An unauthorized user in the guest VM can impact protected D-Bus endpoints, potentially enabling code execution, denial of service, privilege escalation, information disclosure, or data...
CVE-2023-31016
CVE-2023-31016 : NVIDIA GPU Display Driver for Windows contains a vulnerability in an uncontrolled search path element that may allow an attacker to execute arbitrary code, potentially leading to code execution, denial of service, privilege escalation, information disclosure, or data tampering. T...
CVE-2022-42263
Summary of CVE-2022-42263 – NVIDIA GPU Display Driver for Linux : The vulnerability affects the NVIDIA GPU Display Driver for Linux, specifically in the kernel mode layer handler. The issue is an integer overflow in that kernel-mode component, which the source material describes as potentially en...
CVE-2022-42267
NVIDIA GPU Display Driver for Windows is affected by CVE-2022-42267, a vulnerability that allows an unprivileged user to trigger an out-of-bounds read, potentially enabling code execution, denial of service, privilege escalation, information disclosure, or data tampering. The NVIDIA security upda...
CVE-2023-31019
CVE-2023-31019 affects the NVIDIA GPU Display Driver for Windows, where the wksServicePlugin.dll component mishandles access via the named pipe server, potentially allowing impersonation of the client’s secure context. The Red Hat/ NVIDIA bulletins corroborate the issue and tie it to a privilege-...
CVE-2023-31020
The CVE-2023-31020 issue affects NVIDIA GPU Display Driver for Windows in the kernel mode layer, where an unprivileged regular user can trigger improper access control, potentially causing denial of service or data tampering. The Red Hat advisory and NVIDIA security bulletins corroborate the Wind...
CVE-2022-34684
CVE-2022-34684 affects the NVIDIA GPU Display Driver for Linux, specifically the kernel mode driver module nvidia.ko . An off-by-one error in the kernel mode layer may lead to data tampering or information disclosure . Risk is described as local, low-privilege, no user interaction required, with ...
CVE-2023-0188
CVE-2023-0188 affects the NVIDIA GPU Display Driver for Windows and Linux. The vulnerability is in the kernel mode layer handler and allows an unprivileged user to cause an out-of-bounds read within a memory buffer, leading to denial of service. The CVSS v3.1 vector indicates local access with lo...
CVE-2022-42262
CVE-2022-42262 affects NVIDIA vGPU software, specifically the Virtual GPU Manager (vGPU plugin). The vulnerability arises from an input index that is not validated, which can cause a buffer overrun. Impact as stated: data tampering, information disclosure, and denial of service. The provided docu...
CVE-2023-0191
The CVE-2023-0191 entry concerns NVIDIA GPU Display Driver for Windows and Linux. The vulnerability is in the kernel-mode layer handler, described as an out-of-bounds access that may cause denial of service or data tampering. No vendor/version-specific affected products or patch/fix details are p...
CVE-2024-0092
CVE-2024-0092 affects NVIDIA GPU Driver for Windows and Linux, with DoS caused by improper check/handling of exception conditions. The CVE is linked to multiple advisories (e.g., SUSE-SU-2024:2585-1) noting fixes such as kernel-firmware-nvidia-gspx-G06 and updated Open Driver packages; NVIDIA/NVD...
CVE-2022-42256
CVE-2022-42256 concerns the NVIDIA GPU Display Driver for Linux, via the kernel module nvidia.ko . The root cause is an integer overflow in index validation, which may lead to denial of service , information disclosure , or data tampering . The provided documents confirm the affected component an...
CVE-2023-0183
CVE-2023-0183 affects the NVIDIA GPU Display Driver for Linux, specifically a kernel-mode layer vulnerability where an out-of-bounds write can cause denial of service and data tampering. The description across sources confirms the issue is in the Linux kernel-mode layer of the NVIDIA driver; no e...