Vulnerabilities > CVE-2019-5690 - Out-of-bounds Write vulnerability in Nvidia GPU Driver

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

nvidia

CWE-787

NVD

Published: 2019-11-09

Updated: 2020-08-24

Summary

NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the size of an input buffer is not validated, which may lead to denial of service or escalation of privileges.

Vulnerable Configurations

Part	Description	Count
Application	Nvidia Nvidia GPU Driver *	1
OS	Microsoft Microsoft Windows -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://nvidia.custhelp.com/app/answers/detail/a_id/4907