NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged regular user can cause an out-of-bounds read. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
History

Mon, 28 Oct 2024 18:15:00 +0000

Type Values Removed Values Added
First Time appeared Nvidia
Nvidia cloud Gaming Guest
Nvidia gpu Display Driver
Nvidia virtual Gpu
CPEs cpe:2.3:a:nvidia:cloud_gaming_guest:-:*:*:*:*:*:*:*
cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*
cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:*
Vendors & Products Nvidia
Nvidia cloud Gaming Guest
Nvidia gpu Display Driver
Nvidia virtual Gpu
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Sat, 26 Oct 2024 08:15:00 +0000

Type Values Removed Values Added
Description NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged regular user can cause an out-of-bounds read. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Weaknesses CWE-125
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: nvidia

Published: 2024-10-26T08:06:19.001Z

Updated: 2024-11-01T03:55:27.833Z

Reserved: 2023-12-02T00:42:28.257Z

Link: CVE-2024-0117

cve-icon Vulnrichment

Updated: 2024-10-26T09:02:40.089Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-10-26T08:15:02.520

Modified: 2024-10-28T13:58:09.230

Link: CVE-2024-0117

cve-icon Redhat

No data.