Vulnerabilities > Nvidia > Low

DATE CVE VULNERABILITY TITLE RISK
2024-09-26 CVE-2024-0133 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Nvidia Container Toolkit and Nvidia GPU Operator
NVIDIA Container Toolkit 1.16.1 or earlier contains a vulnerability in the default mode of operation allowing a specially crafted container image to create empty files on the host file system.
network
high complexity
nvidia CWE-367
3.4
2024-08-31 CVE-2024-0109 Out-of-bounds Read vulnerability in Nvidia Cuda Toolkit
NVIDIA CUDA Toolkit contains a vulnerability in command `cuobjdump` where a user may cause a crash by passing in a malformed ELF file.
local
low complexity
nvidia CWE-125
3.3
2023-07-04 CVE-2023-25523 NULL Pointer Dereference vulnerability in Nvidia Cuda Toolkit
NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the nvdisasm binary file, where an attacker may cause a NULL pointer dereference by providing a user with a malformed ELF file.
local
low complexity
nvidia CWE-476
3.3
2023-04-22 CVE-2023-25511 Divide By Zero vulnerability in Nvidia Cuda Toolkit
NVIDIA CUDA Toolkit for Linux and Windows contains a vulnerability in cuobjdump, where a division-by-zero error may enable a user to cause a crash, which may lead to a limited denial of service.
local
low complexity
nvidia CWE-369
3.3
2023-04-22 CVE-2023-25510 NULL Pointer Dereference vulnerability in Nvidia Cuda Toolkit
NVIDIA CUDA Toolkit SDK for Linux and Windows contains a NULL pointer dereference in cuobjdump, where a local user running the tool against a malformed binary may cause a limited denial of service.
local
low complexity
nvidia CWE-476
3.3
2023-04-01 CVE-2023-0195 Improper Validation of Specified Quantity in Input vulnerability in Nvidia Virtual GPU
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer driver nvlddmkm.sys, where an can cause CWE-1284, which may lead to hypothetical Information leak of unimportant data such as local variable data of the driver
low complexity
nvidia CWE-1284
2.4
2023-03-02 CVE-2023-0196 NULL Pointer Dereference vulnerability in Nvidia Cuda Toolkit
NVIDIA CUDA Toolkit SDK contains a bug in cuobjdump, where a local user running the tool against an ill-formed binary may cause a null- pointer dereference, which may result in a limited denial of service.
local
low complexity
nvidia CWE-476
3.3
2022-12-30 CVE-2022-42266 Information Exposure vulnerability in Nvidia Cloud Gaming and Virtual GPU
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where an unprivileged regular user can cause exposure of sensitive information to an actor that is not explicitly authorized to have access to that information, which may lead to limited information disclosure.
local
low complexity
nvidia CWE-200
3.3
2022-05-17 CVE-2022-28192 Use After Free vulnerability in Nvidia Virtual GPU
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where it may lead to a use-after-free, which in turn may cause denial of service.
local
nvidia CWE-416
1.9
2022-05-17 CVE-2022-28190 Improper Input Validation vulnerability in Nvidia GPU Display Driver
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where improper input validation can cause denial of service.
local
low complexity
nvidia CWE-20
2.1