Description
NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker could cause an out-of-bounds write. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High
Affected products
- NVIDIA / GeForceAll driver versions prior to 580.159.03 – All driver versions prior to 580.159.03
- NVIDIA / GeForceAll driver versions prior to 535.309.01 – All driver versions prior to 535.309.01
- NVIDIA / GeForceAll driver versions prior to 582.53 Only GPUs based on the NVIDIA Maxwell, Volta, and Pascal GPU architectures are affected. – All driver versions prior to 582.53 Only GPUs based on the NVIDIA Maxwell, Volta, and Pascal GPU architectures are affected.
- NVIDIA / NVIDIA RTX, Quadro, NVSAll driver versions prior to 582.53 – All driver versions prior to 582.53
- NVIDIA / NVIDIA RTX, Quadro, NVSAll driver versions prior to 580.159.03 – All driver versions prior to 580.159.03
- NVIDIA / NVIDIA RTX, Quadro, NVSAll driver versions prior to 539.72 – All driver versions prior to 539.72
- NVIDIA / NVIDIA RTX, Quadro, NVSAll driver versions prior to 535.309.01 – All driver versions prior to 535.309.01
- NVIDIA / TeslaAll driver versions prior to 539.72 – All driver versions prior to 539.72
- NVIDIA / TeslaAll driver versions prior to 580.159.03 – All driver versions prior to 580.159.03
- NVIDIA / TeslaAll driver versions prior to 535.309.01 – All driver versions prior to 535.309.01
- NVIDIA / TeslaAll driver versions prior to 582.53 – All driver versions prior to 582.53