Vulnerabilities > Nvidia > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-10-27 CVE-2021-1117 Improper Validation of Array Index vulnerability in Nvidia GPU Display Driver
Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where an attacker through specific configuration and with local unprivileged system access may cause improper input validation, which may lead to denial of service.
local
low complexity
nvidia CWE-129
5.5
2021-08-11 CVE-2021-1109 Unspecified vulnerability in Nvidia Jetson Linux
NVIDIA camera firmware contains a multistep, timing-related vulnerability where an unauthorized modification by camera resources may result in loss of data integrity or denial of service across several streams.
local
high complexity
nvidia
6.3
2021-08-11 CVE-2021-1111 Out-of-bounds Read vulnerability in Nvidia Jetson Linux
Bootloader contains a vulnerability in the NV3P server where any user with physical access through USB can trigger an incorrect bounds check, which may lead to buffer overflow, resulting in limited information disclosure, limited data integrity, and denial of service across all components.
low complexity
nvidia CWE-125
6.7
2021-08-11 CVE-2021-1112 NULL Pointer Dereference vulnerability in Nvidia Jetson Linux
NVIDIA Linux kernel distributions contain a vulnerability in nvmap, where a null pointer dereference may lead to complete denial of service.
local
low complexity
nvidia CWE-476
5.5
2021-08-11 CVE-2021-1113 Unspecified vulnerability in Nvidia Jetson Linux
NVIDIA camera firmware contains a difficult to exploit vulnerability where a highly privileged attacker can cause unauthorized modification to camera resources, which may result in complete denial of service and partial loss of data integrity for all clients.
local
high complexity
nvidia
4.7
2021-08-11 CVE-2021-1114 Use After Free vulnerability in Nvidia Jetson Linux
NVIDIA Linux kernel distributions contain a vulnerability in the kernel crypto node, where use after free may lead to complete denial of service.
local
low complexity
nvidia CWE-416
4.4
2021-07-22 CVE-2021-1093 Improper Resource Shutdown or Release vulnerability in multiple products
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in firmware where the driver contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary, and may lead to denial of service or system crash.
local
low complexity
nvidia debian CWE-404
5.5
2021-07-22 CVE-2021-1094 Out-of-bounds Read vulnerability in multiple products
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where an out of bounds array access may lead to denial of service or information disclosure.
local
low complexity
nvidia debian CWE-125
6.1
2021-07-22 CVE-2021-1095 NULL Pointer Dereference vulnerability in multiple products
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handlers for all control calls with embedded parameters where dereferencing an untrusted pointer may lead to denial of service.
local
low complexity
nvidia debian CWE-476
5.5
2021-07-22 CVE-2021-1096 NULL Pointer Dereference vulnerability in Nvidia GPU Display Driver
NVIDIA Windows GPU Display Driver for Windows contains a vulnerability in the NVIDIA kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where dereferencing a NULL pointer may lead to a system crash.
local
low complexity
nvidia CWE-476
5.5