Vulnerability CVE-2016-2558


Published: 2016-04-12

Description:
The Escape interface in the Kernel Mode Driver layer in the NVIDIA GPU graphics driver R340 before 341.95 and R352 before 354.74 on Windows allows local users to obtain sensitive information, cause a denial of service (crash), or gain privileges via unspecified vectors related to an untrusted pointer, which trigger uninitialized or out-of-bounds memory access.

CVSS2 => (AV:L/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.2/10
10/10
3.9/10
Exploit range
Attack complexity
Authentication
Local
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Nvidia -> R340 
Nvidia -> R352 

 References:
https://support.lenovo.com/us/en/product_security/len_5551
http://nvidia.custhelp.com/app/answers/detail/a_id/4061

Copyright 2024, cxsecurity.com

 

Back to Top