Description
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.
Published: 2026-05-26
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

An NVIDIA Display Driver for Linux contains a Use-After-Free flaw that allows an attacker to trigger the memory corruption. If successfully exploited, the vulnerability can lead to a denial of service, data tampering, information disclosure, privilege escalation, and even code execution. The description does not explicitly state the required conditions, so the attack vector is not directly documented in the available data.

Affected Systems

The flaw affects NVIDIA GeForce, RTX, Quadro, NVS, Tesla graphics cards and the Guest driver and Virtual GPU Manager components across the listed product lines. No specific version numbers are provided, indicating that the issue may be present in multiple releases until a patch is released.

Risk and Exploitability

The CVSS score of 8.8 classifies the vulnerability as High severity. The EPSS score is not available, and the flaw is not listed in the CISA KEV catalogue, so the public exploitation readiness is uncertain. Without official remediation information, the likelihood of exploitation remains undetermined, but the potential impact warrants immediate attention.

Generated by OpenCVE AI on May 26, 2026 at 20:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade all NVIDIA graphics drivers to the latest available release that contains the fix for the use‑after‑free flaw.
  • Limit permissions for loading kernel modules by ensuring only privileged system users can load NVIDIA drivers; monitor system logs for any suspicious driver‑related errors.
  • Regularly check NVIDIA advisories for patch releases and apply updates promptly.

Generated by OpenCVE AI on May 26, 2026 at 20:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 11 Jun 2026 03:00:00 +0000

Type Values Removed Values Added
First Time appeared Nvidia gpu Display Driver
CPEs cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*
cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*
Vendors & Products Nvidia gpu Display Driver

Wed, 27 May 2026 10:30:00 +0000

Type Values Removed Values Added
First Time appeared Nvidia
Nvidia geforce
Nvidia guest Driver
Nvidia nvs
Nvidia quadro
Nvidia rtx
Nvidia tesla
Nvidia virtual Gpu Manager
Vendors & Products Nvidia
Nvidia geforce
Nvidia guest Driver
Nvidia nvs
Nvidia quadro
Nvidia rtx
Nvidia tesla
Nvidia virtual Gpu Manager

Tue, 26 May 2026 20:45:00 +0000

Type Values Removed Values Added
Title NVIDIA Linux Graphics Driver Use‑After‑Free Vulnerability

Tue, 26 May 2026 19:30:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 26 May 2026 18:00:00 +0000

Type Values Removed Values Added
Description NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.
Weaknesses CWE-416
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H'}

Subscriptions

Nvidia Geforce Gpu Display Driver Guest Driver Nvs Quadro Rtx Tesla Virtual Gpu Manager
cve-icon MITRE

Status: PUBLISHED

Assigner: nvidia

Published:

Updated: 2026-05-27T15:38:40.976Z

Reserved: 2026-01-21T19:09:32.733Z

Link: CVE-2026-24187

cve-icon Vulnrichment

Updated: 2026-05-26T18:38:44.272Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-26T18:16:37.710

Modified: 2026-06-11T02:56:34.017

Link: CVE-2026-24187

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T10:09:06Z

Weaknesses