Vulnerabilities > Nvidia

DATE CVE VULNERABILITY TITLE RISK
2019-08-06 CVE-2019-5687 Incorrect Default Permissions vulnerability in Nvidia GPU Driver
NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which an incorrect use of default permissions for an object exposes it to an unintended actor
local
low complexity
nvidia microsoft CWE-276
3.6
2019-08-06 CVE-2019-5686 Improper Input Validation vulnerability in Nvidia GPU Driver
NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the software uses an API function or data structure in a way that relies on properties that are not always guaranteed to be valid, which may lead to denial of service.
local
low complexity
nvidia CWE-20
4.9
2019-08-06 CVE-2019-5685 Out-of-bounds Write vulnerability in Nvidia GPU Driver
NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in DirectX drivers, in which a specially crafted shader can cause an out of bounds access to a shader local temporary array, which may lead to denial of service or code execution.
network
low complexity
nvidia microsoft CWE-787
critical
10.0
2019-08-06 CVE-2019-5684 Out-of-bounds Write vulnerability in Nvidia GPU Driver
NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in DirectX drivers, in which a specially crafted shader can cause an out of bounds access of an input texture array, which may lead to denial of service or code execution.
network
low complexity
nvidia microsoft CWE-787
critical
10.0
2019-08-06 CVE-2019-5683 Link Following vulnerability in Nvidia GPU Driver
NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in the user mode video driver trace logger component.
local
low complexity
nvidia microsoft CWE-59
7.2
2019-08-06 CVE-2019-5682 Unspecified vulnerability in Nvidia Shield Experience
NVIDIA Shield TV Experience prior to v8.0, contains a vulnerability in the NVIDIA Games App where it improperly exports an Activity but does not properly restrict which applications can launch the Activity, which may lead to code execution or denial of service.
local
low complexity
nvidia google
7.2
2019-08-06 CVE-2019-5679 Improper Authentication vulnerability in Nvidia Shield Experience
NVIDIA Shield TV Experience prior to v8.0, NVIDIA Tegra bootloader contains a vulnerability in nvtboot where the Trusted OS image is improperly authenticated, which may lead to code execution, denial of service, escalation of privileges, and information disclosure, code execution, denial of service, or escalation of privileges
local
low complexity
nvidia google CWE-287
7.2
2019-07-19 CVE-2019-5680 Improper Input Validation vulnerability in Nvidia Jetson TX1 Firmware
In NVIDIA Jetson TX1 L4T R32 version branch prior to R32.2, Tegra bootloader contains a vulnerability in nvtboot in which the nvtboot-cpu image is loaded without the load address first being validated, which may lead to code execution, denial of service, or escalation of privileges.
local
low complexity
nvidia CWE-20
4.6
2019-06-05 CVE-2017-6261 Improper Input Validation vulnerability in Nvidia Vibrante Linux 1.1/2.0/2.2
NVIDIA Vibrante Linux version 1.1, 2.0, and 2.2 contains a vulnerability in the user space driver in which protection mechanisms are insufficient, may lead to denial of service or information disclosure.
local
low complexity
nvidia CWE-20
4.6
2019-05-31 CVE-2019-5678 Improper Input Validation vulnerability in Nvidia Geforce Experience
NVIDIA GeForce Experience versions prior to 3.19 contains a vulnerability in the Web Helper component, in which an attacker with local system access can craft input that may not be properly validated.
local
low complexity
nvidia microsoft CWE-20
4.6