CVE-2026-24190

Vulnerability

CVE-2026-24190 is a vulnerability in the kernel mode layer of the NVIDIA Display Driver for both Windows and Linux operating systems. The flaw allows improper access to GPU resources due to insufficient access controls, affecting driver versions as disclosed in the NVIDIA security bulletin [1]. The exact version ranges are not specified in the available references, but the issue resides in the kernel-level component that manages GPU memory and execution contexts.

Exploitation

An attacker with local user access can exploit this vulnerability without requiring administrative privileges. The attack vector involves a user-level process making specially crafted IOCTL calls to the GPU driver's kernel mode layer, causing it to improperly access or manipulate GPU resources beyond the process's allocated permissions [1]. User interaction is not required beyond executing the malicious code, and no network access is needed as the attack is local.

Impact

Successful exploitation can lead to multiple severe outcomes: denial of service (driver crash or system hang), escalation of privileges to kernel level, disclosure of sensitive GPU memory contents, data tampering of GPU-resident data, and ultimately arbitrary code execution in kernel context [1]. The attacker could gain complete control over the GPU and potentially the entire system.

Mitigation

NVIDIA has released driver updates to address this vulnerability; affected users should install the latest driver version from the official NVIDIA website [1]. The specific fixed version numbers are not provided in the available references. If patching is not immediately possible, users should restrict local access to trusted users only, as exploitation requires local system access. This CVE is not listed on the CISA Known Exploited Vulnerabilities (KEV) catalog as of the publication date.