NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged regular user can cause an out-of-bounds read. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
History

Fri, 22 Nov 2024 12:00:00 +0000


Mon, 28 Oct 2024 18:15:00 +0000

Type Values Removed Values Added
First Time appeared Nvidia
Nvidia cloud Gaming Guest
Nvidia gpu Display Driver
Nvidia virtual Gpu
CPEs cpe:2.3:a:nvidia:cloud_gaming_guest:-:*:*:*:*:*:*:*
cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*
cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:*
Vendors & Products Nvidia
Nvidia cloud Gaming Guest
Nvidia gpu Display Driver
Nvidia virtual Gpu
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Sat, 26 Oct 2024 08:15:00 +0000

Type Values Removed Values Added
Description NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged regular user can cause an out-of-bounds read. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Weaknesses CWE-125
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: nvidia

Published: 2024-10-26T08:06:27.506Z

Updated: 2024-11-01T03:55:26.857Z

Reserved: 2023-12-02T00:42:29.336Z

Link: CVE-2024-0118

cve-icon Vulnrichment

Updated: 2024-10-26T09:02:41.653Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-10-26T08:15:02.880

Modified: 2024-11-21T08:45:55.387

Link: CVE-2024-0118

cve-icon Redhat

No data.