NVIDIA GPU Display Driver Vulnerability Could Lead to Denial of Service
CVE-2024-0079

6.5MEDIUM

Key Information:

Vendor: Nvidia
Status: Vgpu Driver, Cloud Gaming Driver
Vendor: CVE Published:; 27 March 2024

What is CVE-2024-0079?

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a user in a guest VM can cause a NULL-pointer dereference in the host. A successful exploit of this vulnerability may lead to denial of service.

Affected Version(s)

vGPU driver, Cloud Gaming driver All versions prior to and including 16.3, 13.9, and all versions prior to and including the January 2024 release

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5520

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 27, 2024
Vulnerability Reserved
Dec 2, 2023

Nvidia

What is CVE-2024-0079?

Affected Version(s)

References

CVSS V3.1

Timeline