NVIDIA Windows GPU Display Driver Vulnerability Exposing System Memory Access
CVE-2017-6251

7.8HIGH

Key Information:

Vendor
Nvidia
Status
Nvidia Windows Gpu Display Driver
Vendor
CVE Published:
28 July 2017

Summary

The NVIDIA Windows GPU Display Driver contains a flaw in its kernel mode layer handler due to inadequate permission checks. This vulnerability may enable a local user to access arbitrary physical system memory, potentially facilitating unauthorized escalation of privileges. The risk associated with this issue underscores the importance of maintaining updated drivers and implementing robust security measures.

Affected Version(s)

NVIDIA Windows GPU Display Driver All

References

http://nvidia.custhelp.com/app/answers/detail/a_id/4525
x_refsource_CONFIRM

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.