Race Condition Vulnerability in NVIDIA GPU Display Driver for Linux
CVE-2026-24198

5.6MEDIUM

Key Information:

Vendor: Nvidia
Status: Geforce; Rtx, Quadro, Nvs; Tesla
Vendor: CVE Published:; 26 May 2026

What is CVE-2026-24198?

The NVIDIA GPU Display Driver for Linux is affected by a race condition flaw that allows advanced attackers to leak sensitive memory information. This vulnerability could expose sensitive data to unauthorized actors, potentially resulting in denial of service, data tampering, and unauthorized information disclosure. It is crucial for users to review the security implications of this vulnerability and apply necessary patches to safeguard their systems.

Affected Version(s)

GeForce Linux(R580) All driver versions prior to 580.159.03

GeForce Linux(R595) All driver versions prior to 595.71.05

RTX, Quadro, NVS Linux(R580) All driver versions prior to 580.159.03

References

https://nvd.nist.gov/vuln/detail/CVE-2026-24198

https://www.cve.org/CVERecord?id=CVE-2026-24198

https://nvidia.custhelp.com/app/answers/detail/a_id/5821

CVSS V3.1

Score:

5.6

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 26, 2026
Vulnerability Reserved
Jan 21, 2026

CVE-2026-24198 Data

JSON

Nvidia

What is CVE-2026-24198?

Affected Version(s)

References

CVSS V3.1

Timeline