CVSS: 6.2EPSS: 0%CPEs: 7EXPL: 0CVE-2021-1093 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2021-1093
21 Jul 2021 — NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in firmware where the driver contains an assert() or similar statement that can be triggered by an attacker, which leads to an application exit or other behavior that is more severe than necessary, and may lead to denial of service or system crash. Un controlador de pantalla de la GPU NVIDIA para Windows y Linux, contiene una vulnerabilidad en el firmware en la que el controlador contiene una sentencia assert() o similar que puede ser ... • https://lists.debian.org/debian-lts-announce/2022/01/msg00013.html • CWE-404: Improper Resource Shutdown or Release •
CVSS: 5.5EPSS: 0%CPEs: 7EXPL: 0CVE-2021-1095 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2021-1095
21 Jul 2021 — NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handlers for all control calls with embedded parameters where dereferencing an untrusted pointer may lead to denial of service. Un controlador de pantalla de la GPU de NVIDIA para Windows y Linux contiene una vulnerabilidad en los manejadores de la capa de modo del kernel (nvlddmkm.sys) para todas las llamadas de control con parámetros incrustados donde la referencia a un puntero no confiable pue... • https://lists.debian.org/debian-lts-announce/2022/01/msg00013.html • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 5EXPL: 0CVE-2021-1078
https://notcve.org/view.php?id=CVE-2021-1078
21 Apr 2021 — NVIDIA Windows GPU Display Driver for Windows, all versions, contains a vulnerability in the kernel driver (nvlddmkm.sys) where a NULL pointer dereference may lead to system crash. NVIDIA Windows GPU Display Driver para Windows, todas las versiones, contiene Una vulnerabilidad en el controlador del kernel (nvlddmkm.sys) donde una desreferencia del puntero NULL puede conllevar a un bloqueo del sistema • https://nvidia.custhelp.com/app/answers/detail/a_id/5172 • CWE-476: NULL Pointer Dereference •
CVSS: 7.3EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1075
https://notcve.org/view.php?id=CVE-2021-1075
21 Apr 2021 — NVIDIA Windows GPU Display Driver for Windows, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where the program dereferences a pointer that contains a location for memory that is no longer valid, which may lead to code execution, denial of service, or escalation of privileges. Attacker does not have any control over the information and may conduct limited data modification. El controlador de pantalla de la GPU de NVIDIA para Windows, en todas sus ver... • https://nvidia.custhelp.com/app/answers/detail/a_id/5172 • CWE-476: NULL Pointer Dereference •
CVSS: 7.3EPSS: 0%CPEs: 1EXPL: 0CVE-2021-1074
https://notcve.org/view.php?id=CVE-2021-1074
21 Apr 2021 — NVIDIA GPU Display Driver for Windows installer contains a vulnerability where an attacker with local unprivileged system access may be able to replace an application resource with malicious files. This attack requires a user with system administration rights to execute the installer and requires the attacker to replace the files in a very short time window between file integrity validation and execution. Such an attack may lead to code execution, escalation of privileges, denial of service, and information... • https://nvidia.custhelp.com/app/answers/detail/a_id/5172 •
CVSS: 6.6EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1077 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2021-1077
21 Apr 2021 — NVIDIA GPU Display Driver for Windows and Linux, R450 and R460 driver branch, contains a vulnerability where the software uses a reference count to manage a resource that is incorrectly updated, which may lead to denial of service. NVIDIA GPU Display Driver para Windows y Linux, la rama del controlador R450 y R460, contiene Una vulnerabilidad en la que el software usa un recuento de referencia para administrar un recurso que se actualiza inapropiadamente, lo que puede llevar a la denegación de servicio It w... • https://nvidia.custhelp.com/app/answers/detail/a_id/5172 • CWE-404: Improper Resource Shutdown or Release •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2021-1076 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2021-1076
21 Apr 2021 — NVIDIA GPU Display Driver for Windows and Linux, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys or nvidia.ko) where improper access control may lead to denial of service, information disclosure, or data corruption. NVIDIA GPU Display Driver para Windows y Linux, todas las versiones, contiene Una vulnerabilidad en la capa del modo kernel (nvlddmkm.sys o nvidia.ko) donde un control de acceso inapropiado puede conllevar a una denegación de servicio, divulgación de información o c... • https://lists.debian.org/debian-lts-announce/2022/01/msg00013.html •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2020-5966
https://notcve.org/view.php?id=CVE-2020-5966
25 Jun 2020 — NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, in which a NULL pointer is dereferenced, leading to denial of service or potential escalation of privileges. NVIDIA Windows GPU Display Driver, todas las versiones, contiene una vulnerabilidad en el manejador de capa del modo kernel (nvlddmkm.sys) para DxgkDdiEscape, en el que un puntero NULL es desreferenciado, lo que conduce a una denegación de servicio o una posible... • https://nvidia.custhelp.com/app/answers/detail/a_id/5031 • CWE-476: NULL Pointer Dereference •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 1CVE-2012-0953 – Kernel heap contents leak race in ioctl handler
https://notcve.org/view.php?id=CVE-2012-0953
08 May 2020 — A race condition was discovered in the Linux drivers for Nvidia graphics which allowed an attacker to exfiltrate kernel memory to userspace. This issue was fixed in version 295.53. Se detectó una condición de carrera en los controladores de Linux para los gráficos de Nvidia que permitió a un atacante extraer la memoria del Kernel hacia el espacio de usuario. Este problema fue corregido en la versión 295.53. • https://bugs.launchpad.net/ubuntu/+source/nvidia-graphics-drivers/+bug/979373 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 1CVE-2012-0952 – Heap overflow in control device ioctl
https://notcve.org/view.php?id=CVE-2012-0952
08 May 2020 — A heap buffer overflow was discovered in the device control ioctl in the Linux driver for Nvidia graphics cards, which may allow an attacker to overflow 49 bytes. This issue was fixed in version 295.53. Se detectó un desbordamiento del búfer en la región heap de la memoria en el dispositivo ioctl de control en el controlador de Linux para las tarjetas gráficas Nvidia, lo que puede permitir a un atacante desbordar 49 bytes. Este problema fue corregido en la versión 295.53. • https://bugs.launchpad.net/ubuntu/+source/nvidia-graphics-drivers/+bug/979373 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787: Out-of-bounds Write •