Description
NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker could leak held driver locks. A successful exploit of this vulnerability might lead to denial of service.
Published: 2026-05-26
Score: 6.5 Medium
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability in NVIDIA Display Driver for Windows and Linux allows an attacker to leak held driver locks, potentially leading to denial of service. It is classified as CWE‑667, indicating a race condition that can cause resource leaks and destabilize the driver.

Affected Systems

Affected systems include NVIDIA GeForce, NVIDIA RTX, Quadro, NVS, Tesla, the NVIDIA Guest Driver, and the NVIDIA Virtual GPU Manager on both Windows and Linux. Specific version details are not provided, so any installation of these driver families could be affected until a patch is applied.

Risk and Exploitability

The CVSS score of 6.5 places the vulnerability in a medium‑to‑high risk range, yet no EPSS value or KEV listing is available. The attack is likely to require privileged or local access to trigger the lock leak and produce a denial of service, though this vector is inferred from the driver context and not explicitly disclosed. The risk remains primarily theoretical, but timely patching is advisable.

Generated by OpenCVE AI on May 26, 2026 at 19:28 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest NVIDIA display driver that addresses the lock‑leak vulnerability.
  • If a patch is unavailable, restrict deployment of the affected drivers on critical systems or disable GPU access for non‑essential users.
  • Continuously monitor system logs for anomalies related to driver lock releases and proactively remediate any signs of denial‑of‑service conditions.

Generated by OpenCVE AI on May 26, 2026 at 19:28 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 11 Jun 2026 03:00:00 +0000

Type Values Removed Values Added
First Time appeared Nvidia gpu Display Driver
CPEs cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*
cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*
Vendors & Products Nvidia gpu Display Driver

Wed, 27 May 2026 10:30:00 +0000

Type Values Removed Values Added
First Time appeared Nvidia
Nvidia geforce
Nvidia guest Driver
Nvidia nvs
Nvidia quadro
Nvidia rtx
Nvidia tesla
Nvidia virtual Gpu Manager
Vendors & Products Nvidia
Nvidia geforce
Nvidia guest Driver
Nvidia nvs
Nvidia quadro
Nvidia rtx
Nvidia tesla
Nvidia virtual Gpu Manager

Tue, 26 May 2026 19:45:00 +0000

Type Values Removed Values Added
Title Driver Lock Leaking Leading to Denial of Service in NVIDIA Graphics Drivers

Tue, 26 May 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 26 May 2026 18:00:00 +0000

Type Values Removed Values Added
Description NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker could leak held driver locks. A successful exploit of this vulnerability might lead to denial of service.
Weaknesses CWE-667
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H'}

Subscriptions

Nvidia Geforce Gpu Display Driver Guest Driver Nvs Quadro Rtx Tesla Virtual Gpu Manager
cve-icon MITRE

Status: PUBLISHED

Assigner: nvidia

Published:

Updated: 2026-05-27T15:37:52.121Z

Reserved: 2026-01-21T19:09:32.732Z

Link: CVE-2026-24182

cve-icon Vulnrichment

Updated: 2026-05-26T18:38:03.168Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-26T18:16:37.557

Modified: 2026-06-11T02:52:36.007

Link: CVE-2026-24182

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T10:09:01Z

Weaknesses