CVE-2024-0074

EPSS 0.04%
Published 27.03.2024 22:15:08
Last modified 21.11.2024 08:45:50
Source psirt@nvidia.com
Teams watchlist Login
Open Login

NVIDIA GPU Display Driver for Linux contains a vulnerability where an attacker may access a memory location after the end of the buffer. A successful exploit of this vulnerability may lead to denial of service and data tampering.

Affected products Warnungen 0 Metrics 2 CWE 1 References 4

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

This information is available to logged-in users.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

Vendornvidia

≫

Product GPU Display driver, vGPU driver, Cloud Gaming driver

Default Statusunaffected

Version All versions prior to and including 16.3, 13.9, and all versions prior to and including the January 2024 release

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.04%	0.085

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
psirt@nvidia.com	7.1	1.8	5.2	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

CWE-788 Access of Memory Location After End of Buffer

The product reads or writes to a buffer using an index or pointer that references a memory location after the end of the buffer.

https://nvidia.custhelp.com/app/answers/detail/a_id/5520

https://nvd.nist.gov/vuln/detail/CVE-2024-0074

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2024-0074

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2024-0074

EUVD