7.8

CVE-2024-0073

NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer when the driver is performing an operation at a privilege level that is higher than the minimum level required. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
Diese Information steht angemeldeten Benutzern zur Verfügung.
Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)
Herstellernvidia
Produkt geforce
Default Statusunknown
Version < 551.61
Version 0
Status affected
Version < 474.89
Version 0
Status affected
Herstellernvidia
Produkt studio
Default Statusunknown
Version < 551.61
Version 0
Status affected
Herstellernvidia
Produkt tesla
Default Statusunknown
Version < 551.61
Version 0
Status affected
Version < 538.33
Version 0
Status affected
Version < 474.82
Version 0
Status affected
Herstellernvidia
Produkt quadro
Default Statusunknown
Version < 551.61
Version 0
Status affected
Version < 538.33
Version 0
Status affected
Version < 474.82
Version 0
Status affected
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.04% 0.122
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
psirt@nvidia.com 7.8 1.8 5.9
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CWE-250 Execution with Unnecessary Privileges

The product performs an operation at a privilege level that is higher than the minimum level required, which creates new weaknesses or amplifies the consequences of other weaknesses.