Vulnerabilities > Nvidia > High

DATE CVE VULNERABILITY TITLE RISK
2019-11-09 CVE-2019-5697 Unspecified vulnerability in Nvidia Virtual GPU Manager
NVIDIA Virtual GPU Manager, all versions, contains a vulnerability in which it may grant a guest access to memory that it does not own, which may lead to information disclosure or denial of service.
local
low complexity
nvidia
7.1
2019-11-09 CVE-2019-5692 Improper Validation of Array Index vulnerability in Nvidia GPU Driver
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the product uses untrusted input when calculating or using an array index, which may lead to escalation of privileges or denial of service.
local
low complexity
nvidia CWE-129
7.8
2019-11-09 CVE-2019-5691 NULL Pointer Dereference vulnerability in Nvidia GPU Driver
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which a NULL pointer is dereferenced, which may lead to denial of service or escalation of privileges.
local
low complexity
nvidia CWE-476
7.8
2019-11-09 CVE-2019-5690 Out-of-bounds Write vulnerability in Nvidia GPU Driver
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the size of an input buffer is not validated, which may lead to denial of service or escalation of privileges.
local
low complexity
nvidia CWE-787
7.8
2019-11-09 CVE-2019-5689 Unspecified vulnerability in Nvidia Geforce Experience
NVIDIA GeForce Experience, all versions prior to 3.20.1, contains a vulnerability in the Downloader component in which a user with local system access can craft input that may allow malicious files to be downloaded and saved.
local
low complexity
nvidia
7.8
2019-10-09 CVE-2019-5700 Improper Input Validation vulnerability in Nvidia Shield Experience
NVIDIA Shield TV Experience prior to v8.0.1, NVIDIA Tegra software contains a vulnerability in the bootloader, where it does not validate the fields of the boot image, which may lead to code execution, denial of service, escalation of privileges, and information disclosure.
local
low complexity
nvidia CWE-20
7.8
2019-10-09 CVE-2019-5699 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Nvidia Shield Experience
NVIDIA Shield TV Experience prior to v8.0.1, NVIDIA Tegra bootloader contains a vulnerability where the software performs an incorrect bounds check, which may lead to buffer overflow resulting in escalation of privileges and code execution.
local
low complexity
nvidia CWE-119
7.8
2019-08-13 CVE-2019-5681 Unspecified vulnerability in Nvidia Shield Experience
NVIDIA Shield TV Experience prior to v8.0, contains a vulnerability in the custom NVIDIA API used in the mount system service where user data could be overridden, which may lead to code execution, denial of service, or information disclosure.
local
low complexity
nvidia
7.8
2019-08-06 CVE-2019-5687 Incorrect Default Permissions vulnerability in Nvidia GPU Driver
NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which an incorrect use of default permissions for an object exposes it to an unintended actor
local
low complexity
nvidia CWE-276
7.1
2019-08-06 CVE-2019-5683 Link Following vulnerability in Nvidia GPU Driver
NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in the user mode video driver trace logger component.
local
low complexity
nvidia CWE-59
7.8