Description
NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a user could cause improper access to GPU resources. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.
Published: 2026-05-26
Score: 7.8 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability exists in the kernel mode layer of NVIDIA’s display driver on Windows and Linux, allowing a user to gain improper access to GPU resources. This flaw can lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution. The weakness corresponds to CWE‑862: Missing Authorization.

Affected Systems

NVIDIA GeForce, RTX, Quadro, NVS and Tesla display drivers for both Windows and Linux are affected. Specific version information is not disclosed in the available data.

Risk and Exploitability

The CVSS score of 7.8 indicates a high severity vulnerability. EPSS data is not available and the issue is not listed in the CISA KEV catalog. The described impact suggests a local attack vector requiring a user with access to the affected system; remote exploitation was not indicated in the public description.

Generated by OpenCVE AI on May 26, 2026 at 19:52 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the latest NVIDIA display driver update that fixes the CVE.
  • If an update is not immediately available, disable or remove the affected GPU from the system to block the attack surface.
  • Implement least privilege on user accounts and restrict application access to GPU drivers.
  • Monitor system logs for abnormal GPU activity as an early indicator of exploitation attempts.

Generated by OpenCVE AI on May 26, 2026 at 19:52 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 11 Jun 2026 03:00:00 +0000

Type Values Removed Values Added
First Time appeared Nvidia gpu Display Driver
CPEs cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*
cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*
Vendors & Products Nvidia gpu Display Driver

Wed, 27 May 2026 10:30:00 +0000

Type Values Removed Values Added
First Time appeared Nvidia
Nvidia geforce
Nvidia nvs
Nvidia quadro
Nvidia rtx
Nvidia rtx, Quadro, Nvs
Nvidia tesla
Vendors & Products Nvidia
Nvidia geforce
Nvidia nvs
Nvidia quadro
Nvidia rtx
Nvidia rtx, Quadro, Nvs
Nvidia tesla

Wed, 27 May 2026 05:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Tue, 26 May 2026 20:15:00 +0000

Type Values Removed Values Added
Title Improper Access to GPU Resources in NVIDIA Display Driver

Tue, 26 May 2026 18:00:00 +0000

Type Values Removed Values Added
Description NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a user could cause improper access to GPU resources. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.
Weaknesses CWE-862
References
Metrics cvssV3_1

{'score': 7.8, 'vector': 'CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Nvidia Geforce Gpu Display Driver Nvs Quadro Rtx Rtx, Quadro, Nvs Tesla
cve-icon MITRE

Status: PUBLISHED

Assigner: nvidia

Published:

Updated: 2026-05-27T15:39:23.833Z

Reserved: 2026-01-21T19:09:32.733Z

Link: CVE-2026-24190

cve-icon Vulnrichment

Updated: 2026-05-26T18:36:52.384Z

cve-icon NVD

Status : Analyzed

Published: 2026-05-26T18:16:37.847

Modified: 2026-06-11T02:56:48.063

Link: CVE-2026-24190

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T10:08:56Z

Weaknesses