Vulnerabilities > CVE-2019-5691 - NULL Pointer Dereference vulnerability in Nvidia GPU Driver

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

nvidia

CWE-476

NVD

Published: 2019-11-09

Updated: 2019-11-12

Summary

NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which a NULL pointer is dereferenced, which may lead to denial of service or escalation of privileges.

Vulnerable Configurations

Part	Description	Count
Application	Nvidia Nvidia GPU Driver *	1
OS	Microsoft Microsoft Windows -	1

Common Weakness Enumeration (CWE)

CWE-476 - NULL Pointer Dereference

References

https://nvidia.custhelp.com/app/answers/detail/a_id/4907