Vulnerabilities > CVE-2019-5690 - Out-of-bounds Write vulnerability in Nvidia GPU Driver

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

nvidia

CWE-787

NVD

Published: 2019-11-09

Updated: 2020-08-24

Summary

NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the size of an input buffer is not validated, which may lead to denial of service or escalation of privileges.

Vulnerable Configurations

Part	Description	Count
Application	Nvidia Nvidia GPU Driver *	1
OS	Microsoft Microsoft Windows -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://nvidia.custhelp.com/app/answers/detail/a_id/4907