Vulnerabilities > Nvidia > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-10-27 | CVE-2021-1117 | Improper Validation of Array Index vulnerability in Nvidia GPU Display Driver Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where an attacker through specific configuration and with local unprivileged system access may cause improper input validation, which may lead to denial of service. | 5.5 |
2021-08-11 | CVE-2021-1109 | Unspecified vulnerability in Nvidia Jetson Linux NVIDIA camera firmware contains a multistep, timing-related vulnerability where an unauthorized modification by camera resources may result in loss of data integrity or denial of service across several streams. | 6.3 |
2021-08-11 | CVE-2021-1111 | Out-of-bounds Read vulnerability in Nvidia Jetson Linux Bootloader contains a vulnerability in the NV3P server where any user with physical access through USB can trigger an incorrect bounds check, which may lead to buffer overflow, resulting in limited information disclosure, limited data integrity, and denial of service across all components. | 6.7 |
2021-08-11 | CVE-2021-1112 | NULL Pointer Dereference vulnerability in Nvidia Jetson Linux NVIDIA Linux kernel distributions contain a vulnerability in nvmap, where a null pointer dereference may lead to complete denial of service. | 5.5 |
2021-08-11 | CVE-2021-1113 | Unspecified vulnerability in Nvidia Jetson Linux NVIDIA camera firmware contains a difficult to exploit vulnerability where a highly privileged attacker can cause unauthorized modification to camera resources, which may result in complete denial of service and partial loss of data integrity for all clients. | 4.7 |
2021-08-11 | CVE-2021-1114 | Use After Free vulnerability in Nvidia Jetson Linux NVIDIA Linux kernel distributions contain a vulnerability in the kernel crypto node, where use after free may lead to complete denial of service. | 4.4 |
2021-07-22 | CVE-2021-1093 | Improper Resource Shutdown or Release vulnerability in multiple products NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in firmware where the driver contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary, and may lead to denial of service or system crash. | 5.5 |
2021-07-22 | CVE-2021-1094 | Out-of-bounds Read vulnerability in multiple products NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where an out of bounds array access may lead to denial of service or information disclosure. | 6.1 |
2021-07-22 | CVE-2021-1095 | NULL Pointer Dereference vulnerability in multiple products NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handlers for all control calls with embedded parameters where dereferencing an untrusted pointer may lead to denial of service. | 5.5 |
2021-07-22 | CVE-2021-1096 | NULL Pointer Dereference vulnerability in Nvidia GPU Display Driver NVIDIA Windows GPU Display Driver for Windows contains a vulnerability in the NVIDIA kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where dereferencing a NULL pointer may lead to a system crash. | 5.5 |