Vulnerabilities > Nvidia
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2015-03-06 | CVE-2015-1170 | Permissions, Privileges, and Access Controls vulnerability in Nvidia products The NVIDIA Display Driver R304 before 309.08, R340 before 341.44, R343 before 345.20, and R346 before 347.52 does not properly validate local client impersonation levels when performing a "kernel administrator check," which allows local users to gain administrator privileges via unspecified API calls. | 7.2 |
| 2014-12-10 | CVE-2014-8298 | Data Processing Errors vulnerability in Nvidia GPU Driver The NVIDIA Linux Discrete GPU drivers before R304.125, R331.x before R331.113, R340.x before R340.65, R343.x before R343.36, and R346.x before R346.22, Linux for Tegra (L4T) driver before R21.2, and Chrome OS driver before R40 allows remote attackers to cause a denial of service (segmentation fault and X server crash) or possibly execute arbitrary code via a crafted GLX indirect rendering protocol request. | 7.5 |
| 2014-01-21 | CVE-2013-5987 | Unspecified vulnerability in NVIDIA graphics driver Release 331, 325, 319, 310, and 304 allows local users to bypass intended access restrictions for the GPU and gain privileges via unknown vectors. | 7.2 |
| 2014-01-21 | CVE-2013-5986 | Local Privilege Escalation vulnerability in NVIDIA Graphics Driver GPU Access Unspecified vulnerability in NVIDIA graphics driver Release 331, 325, 319, 310, and 304 has unknown impact and attack vectors, a different vulnerability than CVE-2013-5987. | 10.0 |
| 2013-04-08 | CVE-2013-0131 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Nvidia GPU Driver Buffer overflow in the NVIDIA GPU driver before 304.88, 310.x before 310.44, and 313.x before 313.30 for the X Window System on UNIX, when NoScanout mode is enabled, allows remote authenticated users to execute arbitrary code via a large ARGB cursor. | 7.1 |
| 2013-04-08 | CVE-2013-0111 | Local Privilege Escalation vulnerability in Nvidia Driver 310.00 daemonu.exe (aka the NVIDIA Update Service Daemon), as distributed with the NVIDIA driver before 307.78, and Release 310 before 311.00, on Windows, lacks " (double quote) characters in the service path, which allows local users to gain privileges via a Trojan horse program. | 6.8 |
| 2013-04-08 | CVE-2013-0110 | Local Privilege Escalation vulnerability in Nvidia Driver 310.00 nvSCPAPISvr.exe in the NVIDIA Stereoscopic 3D Driver service, as distributed with the NVIDIA driver before 307.78, and Release 310 before 311.00, on Windows, lacks " (double quote) characters in the service path, which allows local users to gain privileges via a Trojan horse program. | 6.8 |
| 2013-04-08 | CVE-2013-0109 | Buffer Errors vulnerability in Nvidia Display Driver 307.00/310.00 The NVIDIA driver before 307.78, and Release 310 before 311.00, in the NVIDIA Display Driver service on Windows does not properly handle exceptions, which allows local users to gain privileges or cause a denial of service (memory overwrite) via a crafted application. | 7.2 |
| 2012-11-19 | CVE-2012-4225 | Permissions, Privileges, and Access Controls vulnerability in Nvidia Unix Graphic Driver NVIDIA UNIX graphics driver before 295.71 and before 304.32 allows local users to write to arbitrary physical memory locations and gain privileges by modifying the VGA window using /dev/nvidia0. | 7.2 |
| 2012-04-22 | CVE-2012-0946 | Permissions, Privileges, and Access Controls vulnerability in Nvidia Unix Driver The NVIDIA UNIX driver before 295.40 allows local users to access arbitrary memory locations by leveraging GPU device-node read/write privileges. | 4.6 |