Vulnerabilities > CVE-2024-0090 - Out-of-bounds Write vulnerability in Nvidia GPU Display Driver and Virtual GPU

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

nvidia

CWE-787

NVD

Published: 2024-06-13

Updated: 2024-08-15

Summary

NVIDIA GPU driver for Windows and Linux contains a vulnerability where a user can cause an out-of-bounds write. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.

Vulnerable Configurations

Part	Description	Count
Application	Nvidia Nvidia GPU Display Driver 470 Nvidia GPU Display Driver 471.11 Nvidia GPU Display Driver 471.41 Nvidia GPU Display Driver 471.68 Nvidia GPU Display Driver 472.12 Nvidia GPU Display Driver 472.39 Nvidia GPU Display Driver 472.47 Nvidia GPU Display Driver 472.84 Nvidia GPU Display Driver 472.98 Nvidia GPU Display Driver 473.47 Nvidia GPU Display Driver 473.81 Nvidia GPU Display Driver 474.04 Nvidia GPU Display Driver 474.14 Nvidia GPU Display Driver 474.30 Nvidia GPU Display Driver 536.40 Nvidia GPU Display Driver * Nvidia GPU Display Driver 470.161.03 Nvidia GPU Display Driver 470.182.03 Nvidia Geforce - Nvidia NVS - Nvidia Quadro - Nvidia RTX - Nvidia Studio - Nvidia Tesla - Nvidia Virtual GPU - Nvidia Virtual GPU 8.0 Nvidia Virtual GPU 8.1 Nvidia Virtual GPU 8.2 Nvidia Virtual GPU 8.3 Nvidia Virtual GPU 8.9 Nvidia Virtual GPU 8.10 Nvidia Virtual GPU 9.0 Nvidia Virtual GPU 9.1 Nvidia Virtual GPU 9.2 Nvidia Virtual GPU 9.3 Nvidia Virtual GPU 10.0 Nvidia Virtual GPU 10.1 Nvidia Virtual GPU 10.2 Nvidia Virtual GPU 11.0 Nvidia Virtual GPU 11.6 Nvidia Virtual GPU 11.7 Nvidia Virtual GPU 11.8 Nvidia Virtual GPU 11.11 Nvidia Virtual GPU 11.12 Nvidia Virtual GPU 12.0 Nvidia Virtual GPU 12.4 Nvidia Virtual GPU 13.0 Nvidia Virtual GPU 13.1 Nvidia Virtual GPU 13.2 Nvidia Virtual GPU 13.3 Nvidia Virtual GPU 13.6 Nvidia Virtual GPU 13.7 Nvidia Virtual GPU 13.9 Nvidia Virtual GPU 13.10 Nvidia Virtual GPU 14.0 Nvidia Virtual GPU 14.1 Nvidia Virtual GPU 14.2 Nvidia Virtual GPU 14.3 Nvidia Virtual GPU 14.4 Nvidia Virtual GPU 15.0 Nvidia Virtual GPU 15.1 Nvidia Virtual GPU 15.2 Nvidia Virtual GPU 15.3 Nvidia Virtual GPU 15.4 Nvidia Virtual GPU 16.0 Nvidia Virtual GPU 16.1 Nvidia Virtual GPU 16.2 Nvidia Virtual GPU 16.3 Nvidia Virtual GPU 16.4 Nvidia Virtual GPU 16.5 Nvidia Virtual GPU 17.0 Nvidia Virtual GPU 17.1 Nvidia Virtual GPU 13.11 Nvidia Virtual GPU 13.12 Nvidia Virtual GPU 16.6 Nvidia Virtual GPU 16.7 Nvidia Cloud Gaming - Nvidia Cloud Gaming 515.65.01 Nvidia Cloud Gaming 516.94 Nvidia Cloud Gaming 525.60.11 Nvidia Cloud Gaming 525.60.12 Nvidia Cloud Gaming 527.27	84
Application	Microsoft Microsoft Azure Stack HCI -	1
OS	Canonical Canonical Ubuntu Linux -	1
OS	Citrix Citrix Hypervisor -	1
OS	Linux Linux Linux Kernel -	1
OS	Microsoft Microsoft Windows -	1
OS	Redhat Redhat Enterprise Linux Kernel Based Virtual Machine -	1
OS	Vmware Vmware Vsphere -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5551