Vulnerabilities > Nvidia > High

DATE CVE VULNERABILITY TITLE RISK
2020-06-30 CVE-2020-5968 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Nvidia Virtual GPU Manager
NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, in which the software does not restrict or incorrectly restricts operations within the boundaries of a resource that is accessed by using an index or pointer, such as memory or files, which may lead to code execution, denial of service, escalation of privileges, or information disclosure.
local
low complexity
nvidia CWE-119
7.8
2020-06-25 CVE-2020-5966 NULL Pointer Dereference vulnerability in Nvidia GPU Display Driver
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, in which a NULL pointer is dereferenced, leading to denial of service or potential escalation of privileges.
local
low complexity
nvidia CWE-476
7.8
2020-06-25 CVE-2020-5964 Insufficient Verification of Data Authenticity vulnerability in Nvidia products
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the service host component, in which the application resources integrity check may be missed.
local
low complexity
nvidia CWE-345
7.8
2020-06-25 CVE-2020-5963 NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the Inter Process Communication APIs, in which improper access control may lead to code execution, denial of service, or information disclosure.
local
low complexity
nvidia canonical
7.8
2020-06-24 CVE-2020-5962 Unspecified vulnerability in Nvidia products
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the NVIDIA Control Panel component, in which an attacker with local system access can corrupt a system file, which may lead to denial of service or escalation of privileges.
local
low complexity
nvidia
7.8
2020-03-11 CVE-2020-5958 Unspecified vulnerability in Nvidia Geforce Experience, Quadro Firmware and Tesla Firmware
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the NVIDIA Control Panel component in which an attacker with local system access can plant a malicious DLL file, which may lead to code execution, denial of service, or information disclosure.
local
low complexity
nvidia
7.8
2020-03-05 CVE-2020-5957 Unspecified vulnerability in Nvidia Geforce Experience, Quadro Firmware and Tesla Firmware
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the NVIDIA Control Panel component in which an attacker with local system access can corrupt a system file, which may lead to denial of service or escalation of privileges.
local
low complexity
nvidia
7.8
2020-02-12 CVE-2012-0951 Out-of-bounds Write vulnerability in Nvidia Display Driver 295.49/295.53
A Memory Corruption Vulnerability exists in NVIDIA Graphics Drivers 29549 due to an unknown function in the file proc/driver/nvidia/registry.
local
low complexity
nvidia CWE-787
7.8
2019-12-24 CVE-2019-5702 Unspecified vulnerability in Nvidia Geforce Experience
NVIDIA GeForce Experience, all versions prior to 3.20.2, contains a vulnerability when GameStream is enabled in which an attacker with local system access can corrupt a system file, which may lead to denial of service or escalation of privileges.
local
low complexity
nvidia
7.8
2019-11-09 CVE-2019-5701 Uncontrolled Search Path Element vulnerability in Nvidia Geforce Experience
NVIDIA GeForce Experience, all versions prior to 3.20.0.118, contains a vulnerability when GameStream is enabled in which an attacker with local system access can load the Intel graphics driver DLLs without validating the path or signature (also known as a binary planting or DLL preloading attack), which may lead to denial of service, information disclosure, or escalation of privileges through code execution.
local
low complexity
nvidia CWE-427
7.8