CVE-2026-24198

Summary

NVIDIA GPU Display Driver for Linux contains a vulnerability where an advanced attacker could use a race condition to leak sensitive memory, which might cause limited exposure of sensitive information to an unauthorized actor. A successful exploit of this vulnerability might lead to denial of service, data tampering, and information disclosure.

Affected Software

VendorProductVersion RangeStatus
NVIDIAGeForceAll driver versions prior to 595.71.05affected
NVIDIAGeForceAll driver versions prior to 580.159.03affected
NVIDIANVIDIA RTX, Quadro, NVSAll driver versions prior to 595.71.05affected
NVIDIANVIDIA RTX, Quadro, NVSAll driver versions prior to 580.159.03affected
NVIDIATeslaAll driver versions prior to 595.71.05affected
NVIDIATeslaAll driver versions prior to 580.159.03affected

Weaknesses

  • CWE-200: CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References