CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2016-8822
https://notcve.org/view.php?id=CVE-2016-8822
16 Dec 2016 — All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x600000E, 0x600000F, and 0x6000010 where a value passed from a user to the driver is used without validation as the index to an internal array, leading to denial of service or potential escalation of privileges. Todas las versiones de NVIDIA Windows GPU Display Driver contienen una vulnerabilidad en el controlador de la capa de modo kernel (nvlddmkm.sys) para DxgDdiE... • http://nvidia.custhelp.com/app/answers/detail/a_id/4278 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2016-8819
https://notcve.org/view.php?id=CVE-2016-8819
16 Dec 2016 — All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where a handle to a kernel object may be returned to the user, leading to possible denial of service or escalation of privileges. Todas las versiones de NVIDIA Windows GPU Display Driver contienen una vulnerabilidad en el controlador de la capa de modo kernel (nvlddmkm.sys) para DxgkDdiEscape donde un identificador a un objeto del kernel puede ser devuelto al usuario, c... • http://nvidia.custhelp.com/app/answers/detail/a_id/4257 • CWE-775: Missing Release of File Descriptor or Handle after Effective Lifetime •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2016-8820
https://notcve.org/view.php?id=CVE-2016-8820
16 Dec 2016 — All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape where a check on a function return value is missing, potentially allowing an uninitialized value to be used as the source of a strcpy() call, leading to denial of service or information disclosure. Todas las versiones de NVIDIA Windows GPU Display Driver contienen una vulnerabilidad en el controlador de la capa de modo kernel (nvlddmkm.sys) para DxgDdiEscape donde falta ... • http://nvidia.custhelp.com/app/answers/detail/a_id/4257 • CWE-20: Improper Input Validation CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2016-8821
https://notcve.org/view.php?id=CVE-2016-8821
16 Dec 2016 — All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer handler for DxgDdiEscape where improper access controls may allow a user to access arbitrary physical memory, leading to an escalation of privileges. Todas las versiones de NVIDIA Windows GPU Display Driver contienen una vulnerabilidad en el controlador de la capa de modo kernel para DxgDdiEscape donde controles de acceso inapropiados pueden permitir a un usuario acceder a la memoria física arbitraria, conduci... • http://nvidia.custhelp.com/app/answers/detail/a_id/4278 • CWE-284: Improper Access Control •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 1CVE-2016-8823
https://notcve.org/view.php?id=CVE-2016-8823
16 Dec 2016 — All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer handler for DxgDdiEscape where the size of an input buffer is not validated leading to a denial of service or possible escalation of privileges Todas las versiones de NVIDIA Windows GPU Display Driver contienen una vulnerabilidad en el controlador de la capa de modo kernel para DxgDdiEscape donde el tamaño de un búfer de entrada no se valida conduciendo a una denegación de servicio o a una posible escalada de ... • https://github.com/SpiralBL0CK/NDAY_CVE_2016_8823 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2016-8824
https://notcve.org/view.php?id=CVE-2016-8824
16 Dec 2016 — All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape where improper access controls allow a regular user to write a part of the registry intended for privileged users only, leading to escalation of privileges. Todas las versiones de NVIDIA Windows GPU Display Driver contienen una vulnerabilidad en el controlador de la capa de modo kernel (nvlddmkm.sys) para DxgDdiEscape donde controles de acceso inapropiados permiten a un ... • http://nvidia.custhelp.com/app/answers/detail/a_id/4278 • CWE-284: Improper Access Control •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2016-8826 – Ubuntu Security Notice USN-3173-2
https://notcve.org/view.php?id=CVE-2016-8826
16 Dec 2016 — All versions of NVIDIA GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys for Windows or nvidia.ko for Linux) where a user can cause a GPU interrupt storm, leading to a denial of service. Todas las versiones de NVIDIA GPU Display Driver contienen una vulnerabilidad en la capa de modo kernel (nvlddmkm.sys para Windows o nvidia.ko para Linux) donde un usuario puede provocar una interrupción de tormenta GPU, conduciendo a una denegación de servicio. USN-3173-1 fixed a vulnerabili... • http://nvidia.custhelp.com/app/answers/detail/a_id/4278 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2016-7383
https://notcve.org/view.php?id=CVE-2016-7383
08 Nov 2016 — For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in a memory mapping API in the kernel mode layer (nvlddmkm.sys) handler, leading to denial of service or potential escalation of privileges. Para los productos NVIDIA Quadro, NVS y GeForce, NVIDIA Windows GPU Display Driver R340 en versiones anteriores a 342.00 y R375 en versiones anteriores a 375.63 contiene una vulnerabilidad en una API de mapeo de memoria ... • http://nvidia.custhelp.com/app/answers/detail/a_id/4247 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2016-7388
https://notcve.org/view.php?id=CVE-2016-7388
08 Nov 2016 — For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler where a NULL pointer dereference caused by invalid user input may lead to denial of service or potential escalation of privileges. Para los productos NVIDIA Quadro, NVS y GeForce, NVIDIA Windows GPU Display Driver R340 en versiones anteriores a 342.00 y R375 en versiones anteriores a 375.63 contiene una vulnerab... • http://nvidia.custhelp.com/app/answers/detail/a_id/4247 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2016-7381
https://notcve.org/view.php?id=CVE-2016-7381
08 Nov 2016 — For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape where a user input to index an array is not bounds checked, leading to denial of service or potential escalation of privileges. Para los productos NVIDIA Quadro, NVS y GeForce, NVIDIA Windows GPU Display Driver R340 en versiones anteriores a 342.00 y R375 en versiones anteriores a 375.63 contien... • http://nvidia.custhelp.com/app/answers/detail/a_id/4247 • CWE-264: Permissions, Privileges, and Access Controls •