User Input Validation Flaw in NVIDIA Display Driver for Linux
CVE-2026-24195

7.1HIGH

Key Information:

Vendor: Nvidia
Status: Guest Driver
Vendor: CVE Published:; 26 May 2026

What is CVE-2026-24195?

A flaw has been identified in the NVIDIA Display Driver for Linux, specifically within its Unified Virtual Memory (UVM) component. This vulnerability allows for improper input validation, which could potentially result in a denial of service. Attackers exploiting this flaw could cause the driver to become unresponsive, impacting system stability and availability, particularly in environments relying on high-performance graphics processing.

Affected Version(s)

Guest driver Linux(Cloud Gaming) 595.58.03(All versions up to and including the March 2026 release)

Guest driver Linux(R580 vGPU 19) 580.126.09(All versions prior to and including vGPU 19.4)

Guest driver Linux(R595 vGPU 20) 595.58.03(All versions prior to and including vGPU 20.0)

References

https://nvd.nist.gov/vuln/detail/CVE-2026-24195

https://www.cve.org/CVERecord?id=CVE-2026-24195

https://nvidia.custhelp.com/app/answers/detail/a_id/5821

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 26, 2026
Vulnerability Reserved
Jan 21, 2026

CVE-2026-24195 Data

JSON

Nvidia

What is CVE-2026-24195?

Affected Version(s)

References

CVSS V3.1

Timeline