漏洞标题
N/A
漏洞描述信息
在NVIDIAGPU图形驱动程序内核模式驱动程序中多次整数溢出,其中R340在341.92前,R352在354.35前,R358在358.87前,在Windows中R304在304.131前,R340在340.96前,R352在352.63前,R358在358.16前,允许本地用户获取敏感信息,导致拒绝服务( crash),或通过未知向量可能获得特权,触发未初始化或超出范围内存访问。 注意:由于不同的漏洞类型和受影响版本,该标识符已被 Split per ADT2 和 ADT3。请参阅 CVE-2015-8328 以查看在Windows NVIDIA驱动程序中的NVAPI支持层中的漏洞。
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Multiple integer overflows in the kernel mode driver for the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows and R304 before 304.131, R340 before 340.96, R352 before 352.63, and R358 before 358.16 on Linux allow local users to obtain sensitive information, cause a denial of service (crash), or possibly gain privileges via unknown vectors, which trigger uninitialized or out of bounds memory access. NOTE: this identifier has been SPLIT per ADT2 and ADT3 due to different vulnerability type and affected versions. See CVE-2015-8328 for the vulnerability in the NVAPI support layer in NVIDIA drivers for Windows.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
多款NVIDIA GPU显卡驱动数字错误漏洞
漏洞描述信息
NVIDIA GPU graphics driver R340、R352和R358 on Windows和R304、R340和R358 on Linux都是美国英伟达(NVIDIA)公司的图形处理器(GPU)驱动程序。 多款NVIDIA GPU显卡驱动的kernel mode驱动程序中存在整数溢出漏洞,该漏洞源于程序没有正确验证用户模式下的输入。本地攻击者可利用该漏洞获取敏感信息,造成拒绝服务(崩溃),或获取权限。以下产品及版本受到影响:基于Windows平台的NVIDIA GPU graphics dr
CVSS信息
N/A
漏洞类别
数字错误