CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2024-0099
https://notcve.org/view.php?id=CVE-2024-0099
13 Jun 2024 — NVIDIA vGPU software for Linux contains a vulnerability in the Virtual GPU Manager, where the guest OS could cause buffer overrun in the host. A successful exploit of this vulnerability might lead to information disclosure, data tampering, escalation of privileges, and denial of service. El software NVIDIA vGPU para Linux contiene una vulnerabilidad en Virtual GPU Manager, donde el sistema operativo invitado podría provocar un desbordamiento del búfer en el host. Una explotación exitosa de esta vulnerabilid... • https://nvidia.custhelp.com/app/answers/detail/a_id/5551 • CWE-120: Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') •
CVSS: 7.8EPSS: 0%CPEs: 21EXPL: 0CVE-2024-0091
https://notcve.org/view.php?id=CVE-2024-0091
13 Jun 2024 — NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where a user can cause an untrusted pointer dereference by executing a driver API. A successful exploit of this vulnerability might lead to denial of service, information disclosure, and data tampering. El controlador de pantalla GPU NVIDIA para Windows y Linux contiene una vulnerabilidad en la que un usuario puede provocar una desreferencia de un puntero que no es de confianza ejecutando una API del controlador. Una explotación exitos... • https://nvidia.custhelp.com/app/answers/detail/a_id/5551 • CWE-822: Untrusted Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2024-0089
https://notcve.org/view.php?id=CVE-2024-0089
13 Jun 2024 — NVIDIA GPU Display Driver for Windows contains a vulnerability where the information from a previous client or another process could be disclosed. A successful exploit of this vulnerability might lead to code execution, information disclosure, or data tampering. NVIDIA GPU Display Driver para Windows contiene una vulnerabilidad en la que se podría revelar información de un cliente anterior u otro proceso. Una explotación exitosa de esta vulnerabilidad podría provocar la ejecución de código, la divulgación d... • https://nvidia.custhelp.com/app/answers/detail/a_id/5551 • CWE-665: Improper Initialization •
CVSS: 5.4EPSS: 0%CPEs: 17EXPL: 2CVE-2023-44216
https://notcve.org/view.php?id=CVE-2023-44216
26 Sep 2023 — PVRIC (PowerVR Image Compression) on Imagination 2018 and later GPU devices offers software-transparent compression that enables cross-origin pixel-stealing attacks against feTurbulence and feBlend in the SVG Filter specification, aka a GPU.zip issue. For example, attackers can sometimes accurately determine text contained on a web page from one origin if they control a resource from a different origin. PVRIC (PowerVR Image Compression) en Imagination 2018 y dispositivos GPU posteriores ofrece compresión tr... • https://arstechnica.com/security/2023/09/gpus-from-all-major-suppliers-are-vulnerable-to-new-pixel-stealing-attack • CWE-203: Observable Discrepancy •
CVSS: 7.8EPSS: 0%CPEs: 34EXPL: 0CVE-2023-25515 – Gentoo Linux Security Advisory 202405-28
https://notcve.org/view.php?id=CVE-2023-25515
23 Jun 2023 — NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where unexpected untrusted data is parsed, which may lead to code execution, denial of service, escalation of privileges, data tampering, or information disclosure. Multiple vulnerabilities have been discovered in NVIDIA Drivers, the worst of which could result in root privilege escalation. Versions greater than or equal to 470.223.02 are affected. • https://https://nvidia.custhelp.com/app/answers/detail/a_id/5468 • CWE-822: Untrusted Pointer Dereference •
CVSS: 6.1EPSS: 0%CPEs: 23EXPL: 0CVE-2023-0199 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2023-0199
22 Apr 2023 — NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer handler, where an out-of-bounds write can lead to denial of service and data tampering. Multiple vulnerabilities have been discovered in NVIDIA Drivers, the worst of which could result in root privilege escalation. Versions greater than or equal to 470.182.03 are affected. • https://nvidia.custhelp.com/app/answers/detail/a_id/5452 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 10EXPL: 0CVE-2023-0190 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2023-0190
22 Apr 2023 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where a NULL pointer dereference may lead to denial of service. Multiple vulnerabilities have been discovered in NVIDIA Drivers, the worst of which could result in root privilege escalation. Versions greater than or equal to 470.182.03 are affected. • https://nvidia.custhelp.com/app/answers/detail/a_id/5452 • CWE-476: NULL Pointer Dereference •
CVSS: 8.8EPSS: 0%CPEs: 23EXPL: 0CVE-2023-0184 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2023-0184
22 Apr 2023 — NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer handler which may lead to denial of service, escalation of privileges, information disclosure, and data tampering. Multiple vulnerabilities have been discovered in NVIDIA Drivers, the worst of which could result in root privilege escalation. Versions greater than or equal to 470.182.03 are affected. • https://nvidia.custhelp.com/app/answers/detail/a_id/5452 • CWE-822: Untrusted Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 28EXPL: 0CVE-2022-34680 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-34680
30 Dec 2022 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an integer truncation can lead to an out-of-bounds read, which may lead to denial of service. NVIDIA GPU Display Driver para Linux contiene una vulnerabilidad en el controlador de capa del modo kernel, donde un truncamiento de números enteros puede provocar una lectura fuera de los límites, lo que puede provocar una Denegación de Servicio (DoS). Multiple vulnerabilities have been discovered in NVIDIA Drivers... • https://lists.debian.org/debian-lts-announce/2023/05/msg00010.html • CWE-197: Numeric Truncation Error CWE-681: Incorrect Conversion between Numeric Types •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2022-42254 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-42254
30 Dec 2022 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an out-of-bounds array access may lead to denial of service, data tampering, or information disclosure. NVIDIA GPU Display Driver para Linux contiene una vulnerabilidad en la capa del modo kernel (nvidia.ko), donde un acceso a la matriz fuera de los límites puede provocar Denegación de Servicio (DoS), manipulación de datos o divulgación de información. Multiple vulnerabilities have been discovered in NVI... • https://nvidia.custhelp.com/app/answers/detail/a_id/5415 • CWE-125: Out-of-bounds Read CWE-129: Improper Validation of Array Index •