5.6
CVE-2026-24198
- EPSS 0.16%
- Veröffentlicht 26.05.2026 17:17:54
- Zuletzt bearbeitet 26.05.2026 19:08:15
- Quelle psirt@nvidia.com
- CVE-Watchlists
- Unerledigt
NVIDIA GPU Display Driver for Linux contains a vulnerability where an advanced attacker could use a race condition to leak sensitive memory, which might cause limited exposure of sensitive information to an unauthorized actor. A successful exploit of this vulnerability might lead to denial of service, data tampering, and information disclosure.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerNVIDIA
≫
Produkt
GeForce
Default Statusunaffected
Version
All driver versions prior to 595.71.05
Status
affected
HerstellerNVIDIA
≫
Produkt
GeForce
Default Statusunaffected
Version
All driver versions prior to 580.159.03
Status
affected
HerstellerNVIDIA
≫
Produkt
NVIDIA RTX, Quadro, NVS
Default Statusunaffected
Version
All driver versions prior to 595.71.05
Status
affected
HerstellerNVIDIA
≫
Produkt
NVIDIA RTX, Quadro, NVS
Default Statusunaffected
Version
All driver versions prior to 580.159.03
Status
affected
HerstellerNVIDIA
≫
Produkt
Tesla
Default Statusunaffected
Version
All driver versions prior to 595.71.05
Status
affected
HerstellerNVIDIA
≫
Produkt
Tesla
Default Statusunaffected
Version
All driver versions prior to 580.159.03
Status
affected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.16% | 0.05 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@nvidia.com | 5.6 | 0.8 | 4.7 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H
|
CWE-200 Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
https://nvidia.custhelp.com/app/answers/detail/a_id/5821
https://nvd.nist.gov/vuln/detail/CVE-2026-24198
https://www.cve.org/CVERecord?id=CVE-2026-24198