Description
NVIDIA Display Driver for Linux contains a vulnerability where a user could cause an out-of-bounds read. A successful exploit of this vulnerability might lead to denial of service and information disclosure.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
High
Affected products
- NVIDIA / GeForceAll driver versions prior to 595.71.05 – All driver versions prior to 595.71.05
- NVIDIA / GeForceAll driver versions prior to 580.159.03 – All driver versions prior to 580.159.03
- NVIDIA / GeForceAll driver versions prior to 535.309.01 – All driver versions prior to 535.309.01
- NVIDIA / Guest driver595.58.03(All versions up to and including the March 2026 release) – 595.58.03(All versions up to and including the March 2026 release)
- NVIDIA / Guest driver595.58.03(All versions prior to and including vGPU 20.0) – 595.58.03(All versions prior to and including vGPU 20.0)
- NVIDIA / Guest driver580.126.09(All versions prior to and including vGPU 19.4) – 580.126.09(All versions prior to and including vGPU 19.4)
- NVIDIA / Guest driver535.288.01(All versions prior to and including vGPU 16.13) – 535.288.01(All versions prior to and including vGPU 16.13)
- NVIDIA / NVIDIA RTX, Quadro, NVSAll driver versions prior to 595.71.05 – All driver versions prior to 595.71.05
- NVIDIA / NVIDIA RTX, Quadro, NVSAll driver versions prior to 580.159.03 – All driver versions prior to 580.159.03
- NVIDIA / NVIDIA RTX, Quadro, NVSAll driver versions prior to 535.309.01 – All driver versions prior to 535.309.01
- NVIDIA / TeslaAll driver versions prior to 580.159.03 – All driver versions prior to 580.159.03
- NVIDIA / TeslaAll driver versions prior to 535.309.01 – All driver versions prior to 535.309.01
- NVIDIA / TeslaAll driver versions prior to 595.71.05 – All driver versions prior to 595.71.05