NVIDIA GPU Display Driver Vulnerability Could Lead to Denial of Service and Limited Information Disclosure
CVE-2024-0075

6.1MEDIUM

Key Information:

Vendor: Nvidia
Status: Gpu Display Driver, Vgpu Driver, Cloud Gaming Driver
Vendor: CVE Published:; 27 March 2024

Summary

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where a user may cause a NULL-pointer dereference by accessing passed parameters the validity of which has not been checked. A successful exploit of this vulnerability may lead to denial of service and limited information disclosure.

Affected Version(s)

GPU Display driver, vGPU driver, Cloud Gaming driver All versions prior to and including 16.3, 13.9, and all versions prior to and including the January 2024 release

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5520

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 27, 2024
Vulnerability Reserved
Dec 2, 2023