Buffer Overflow Vulnerability in NVIDIA GPU Display Driver for Windows and Linux
CVE-2024-0150

7.1HIGH

Key Information:

Vendor: Nvidia
Status: Nvidia Gpu Display Driver, Vgpu Software
Vendor: CVE Published:; 28 January 2025

Summary

The NVIDIA GPU display driver for both Windows and Linux is susceptible to a buffer overflow vulnerability, which allows data to be erroneously written either past the end or before the beginning of a designated buffer. This flaw can potentially enable attackers to exploit the system, leading to significant risks such as information disclosure, denial of service, or unauthorized data alteration. It is essential for users and administrators to apply recommended security measures to safeguard their systems against potential exploits associated with this vulnerability.

Affected Version(s)

NVIDIA GPU Display Driver, vGPU software R535, R550, R560, R565

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5614

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 28, 2025
Vulnerability Reserved
Dec 2, 2023