Vulnerabilities > CVE-2021-1052 - Unspecified vulnerability in Nvidia GPU Driver

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

nvidia

NVD

Published: 2021-01-08

Updated: 2023-10-13

Summary

NVIDIA GPU Display Driver for Windows and Linux, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape or IOCTL in which user-mode clients can access legacy privileged APIs, which may lead to denial of service, escalation of privileges, and information disclosure.

Vulnerable Configurations

Part	Description	Count
Application	Nvidia Nvidia GPU Driver 390 Nvidia GPU Driver 390.141 Nvidia GPU Driver 418 Nvidia GPU Driver 450 Nvidia GPU Driver 450.102.04 Nvidia GPU Driver 460 Nvidia GPU Driver 460.32.03	7
OS	Microsoft Microsoft Windows -	1
OS	Linux Linux Linux Kernel -	1

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5142
https://security.gentoo.org/glsa/202310-02