7.5

CVE-2014-8298

EPSS 1.5%
Veröffentlicht 10.12.2014 15:59:16
Zuletzt bearbeitet 12.04.2025 10:46:40
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

The NVIDIA Linux Discrete GPU drivers before R304.125, R331.x before R331.113, R340.x before R340.65, R343.x before R343.36, and R346.x before R346.22, Linux for Tegra (L4T) driver before R21.2, and Chrome OS driver before R40 allows remote attackers to cause a denial of service (segmentation fault and X server crash) or possibly execute arbitrary code via a crafted GLX indirect rendering protocol request.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 5

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Nvidia ≫ Gpu Driver Versionr304.125 SwPlatformlinux_kernel

Nvidia ≫ Gpu Driver Versionr331.00 SwPlatformlinux_kernel

Nvidia ≫ Gpu Driver Versionr331.112 SwPlatformlinux_kernel

Nvidia ≫ Gpu Driver Versionr340.00 SwPlatformlinux_kernel

Nvidia ≫ Gpu Driver Versionr340.65 SwPlatformlinux_kernel

Nvidia ≫ Gpu Driver Versionr343.00 SwPlatformlinux_kernel

Nvidia ≫ Gpu Driver Versionr343.36 SwPlatformlinux_kernel

Nvidia ≫ Gpu Driver Versionr346.00 SwPlatformlinux_kernel

Nvidia ≫ Gpu Driver Versionr346.22 SwPlatformlinux_kernel

Nvidia ≫ Gpu Driver SwPlatformlinux_kernel HwPlatformtegra Version <= r21.2

Nvidia ≫ Gpu Driver SwPlatformchrome_os Version <= r39

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	1.5%	0.793

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

http://nvidia.custhelp.com/app/answers/detail/a_id/3610

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2014-8298

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2014-8298

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2014-8298

EUVD