8.2

CVE-2024-0126

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability which could allow a privileged attacker to escalate permissions. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD
This information is available to logged-in users.
Daten sind bereitgestellt durch das CVE Programm von Authorized Data Publishers (ADP) (Unstrukturiert)
Vendornvidia
Product gpu_display_driver
Default Statusunaffected
Version < 566.03
Version 565
Status affected
Version < 553.24
Version 550
Status affected
Version < 538.95
Version 535
Status affected
Vendornvidia
Product gpu_display_driver
Default Statusunaffected
Version < 565.57.01
Version 565
Status affected
Version < 550.127.05
Version 550
Status affected
Version < 535.216.01
Version 535
Status affected
Vendornvidia
Product virtual_gpu_manager
Default Statusunaffected
Version < 16.8
Version 0
Status affected
Version < 17.4
Version 17.0
Status affected
Vendornvidia
Product cloud_gaming_virtual_gpu
Default Statusunaffected
Version < 565.57.01
Version 0
Status affected
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.06% 0.186
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
psirt@nvidia.com 8.2 1.5 6
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.