Buffer Overflow Vulnerability in NVIDIA GPU Kernel Driver for Windows and Linux
CVE-2024-0131

4.4MEDIUM

Key Information:

Vendor: Nvidia
Status: Nvidia Gpu Display Driver, Vgpu Software
Vendor: CVE Published:; 2 February 2025

Summary

The NVIDIA GPU kernel driver for both Windows and Linux contains a vulnerability that allows a potential user-mode attacker to exploit a buffer with an incorrect length. This could lead to unintended information disclosure and may result in denial of service conditions, impacting system stability and performance.

Affected Version(s)

NVIDIA GPU Display Driver, vGPU software Windows R535, R550, R560, R565, R570

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5614

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 2, 2025