Description
NVIDIA GPU Display Driver for Linux contains a vulnerability where an advanced attacker could use a race condition to leak sensitive memory, which might cause limited exposure of sensitive information to an unauthorized actor. A successful exploit of this vulnerability might lead to denial of service, data tampering, and information disclosure.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
High
Affected products
- NVIDIA / GeForceAll driver versions prior to 595.71.05 – All driver versions prior to 595.71.05
- NVIDIA / GeForceAll driver versions prior to 580.159.03 – All driver versions prior to 580.159.03
- NVIDIA / NVIDIA RTX, Quadro, NVSAll driver versions prior to 595.71.05 – All driver versions prior to 595.71.05
- NVIDIA / NVIDIA RTX, Quadro, NVSAll driver versions prior to 580.159.03 – All driver versions prior to 580.159.03
- NVIDIA / TeslaAll driver versions prior to 595.71.05 – All driver versions prior to 595.71.05
- NVIDIA / TeslaAll driver versions prior to 580.159.03 – All driver versions prior to 580.159.03