CVE-2024-0090

Summary

NVIDIA GPU driver for Windows and Linux contains a vulnerability where a user can cause an out-of-bounds write. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.

Affected Software

VendorProductVersion RangeStatus
nvidiaGPU display driver, vGPU software, and Cloud GamingAll versions up to and including 17.1, 16.5, 13.10, and the April 2024 releaseaffected

Weaknesses

  • CWE-787: CWE-787

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References