CVE-2016-2557

8.4HIGH

Key Information:

Vendor: Nvidia
Status: Gpu Driver R340; Gpu Driver R352
Vendor: CVE Published:; 12 April 2016

Summary

The Escape interface in the Kernel Mode Driver layer in the NVIDIA GPU graphics driver R340 before 341.95 and R352 before 354.74 on Windows allows local users to obtain sensitive information from kernel memory, cause a denial of service (crash), or possibly gain privileges via unspecified vectors, which trigger uninitialized or out-of-bounds memory access.

References

http://nvidia.custhelp.com/app/answers/detail/a_id/4060

x_refsource_CONFIRM

https://support.lenovo.com/us/en/product_security/len_5551

x_refsource_CONFIRM

CVSS V3.1

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 12, 2016
Vulnerability Reserved
Feb 24, 2016