Vulnerabilities > Nvidia

DATE CVE VULNERABILITY TITLE RISK
2017-04-24 CVE-2016-6917 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Nvidia products
Buffer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5.
local
low complexity
nvidia CWE-119
7.8
2017-04-24 CVE-2016-6916 Integer Overflow or Wraparound vulnerability in Nvidia products
Integer overflow in nvhost_job.c in the NVIDIA video driver for Android, Shield TV before OTA 3.3, Shield Table before OTA 4.4, and Shield Table TK1 before OTA 1.5 allows local users to cause a denial of service (system crash) via unspecified vectors, which triggers a buffer overflow.
local
low complexity
nvidia CWE-190
7.8
2017-02-27 CVE-2017-5927 Information Exposure vulnerability in multiple products
Page table walks conducted by the MMU during virtual to physical address translation leave a trace in the last level cache of modern ARM processors.
network
low complexity
intel amd samsung nvidia allwinner CWE-200
7.5
2017-02-27 CVE-2017-5926 Information Exposure vulnerability in multiple products
Page table walks conducted by the MMU during virtual to physical address translation leave a trace in the last level cache of modern AMD processors.
network
low complexity
intel amd samsung nvidia allwinner CWE-200
7.5
2017-02-27 CVE-2017-5925 Information Exposure vulnerability in multiple products
Page table walks conducted by the MMU during virtual to physical address translation leave a trace in the last level cache of modern Intel processors.
network
low complexity
intel amd samsung nvidia allwinner CWE-200
7.5
2017-02-15 CVE-2017-0324 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Nvidia GPU Driver
All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where the size of an input buffer is not validated, leading to denial of service or potential escalation of privileges.
local
low complexity
nvidia CWE-119
7.8
2017-02-15 CVE-2017-0323 NULL Pointer Dereference vulnerability in Nvidia GPU Driver
All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer handler where a NULL pointer dereference caused by invalid user input may lead to denial of service or potential escalation of privileges.
local
low complexity
nvidia CWE-476
7.8
2017-02-15 CVE-2017-0322 Improper Validation of Array Index vulnerability in Nvidia GPU Driver
All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler where a value passed from a user to the driver is not correctly validated and used as the index to an array, leading to denial of service or potential escalation of privileges.
local
low complexity
nvidia CWE-129
7.8
2017-02-15 CVE-2017-0321 NULL Pointer Dereference vulnerability in Nvidia GPU Driver
All versions of NVIDIA GPU Display Driver contain a vulnerability in the kernel mode layer handler where a NULL pointer dereference caused by invalid user input may lead to denial of service or potential escalation of privileges.
local
low complexity
nvidia CWE-476
8.8
2017-02-15 CVE-2017-0320 Unspecified vulnerability in Nvidia GPU Driver
All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer handler where improper handling of values may cause a denial of service on the system.
local
low complexity
nvidia
5.5