VYPR

Vendor CVEs

Nvidia

All CVEs

1,011 total · sorted by risk
  • CVE-2026-24142MedMay 20, 2026
    risk 0.41cvss 6.3epss 0.00

    NVIDIA TRT-LLM for any platform contains a deserialization vulnerability and unsafe serialized handle. A successful exploit of this vulnerability might lead to code execution, data tampering, and information disclosure.

  • CVE-2026-24231MedApr 28, 2026
    risk 0.41cvss 6.3epss 0.00

    NVIDIA NemoClaw contains a vulnerability in the validateEndpointUrl() SSRF protection component, where an attacker could cause a server-side request forgery by supplying a crafted endpoint URL referencing the 0.0.0.0/8 address range through a blueprint configuration file or CLI…

  • CVE-2025-23262MedSep 4, 2025
    risk 0.41cvss 6.3epss 0.00

    NVIDIA ConnectX contains a vulnerability in the management interface, where an attacker with local access could cause incorrect authorization to modify the configuration. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges,…

  • CVE-2025-33176MedNov 4, 2025
    risk 0.40cvss 6.2epss 0.00

    NVIDIA RunAI for all platforms contains a vulnerability where a user could cause an improper restriction of communications channels on an adjacent network. A successful exploit of this vulnerability might lead to escalation of privileges, data tampering, and information…

  • CVE-2024-0075MedMar 27, 2024
    risk 0.40cvss 6.1epss 0.00

    NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability where a user may cause a NULL-pointer dereference by accessing passed parameters the validity of which has not been checked. A successful exploit of this vulnerability may lead to denial of service and…

  • CVE-2017-6259MedJul 28, 2017
    risk 0.40cvss 6.1epss 0.01

    NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect detection and recovery from an invalid state produced by specific user actions may lead to denial of service.

  • CVE-2016-8820MedDec 16, 2016
    risk 0.40cvss 6.1epss 0.00

    All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape where a check on a function return value is missing, potentially allowing an uninitialized value to be used as the source of a strcpy()…

  • CVE-2016-7386MedNov 8, 2016
    risk 0.39cvss 5.5epss 0.01

    For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x70000D4 which may lead to leaking of kernel memory…

  • CVE-2026-24201MedMay 26, 2026
    risk 0.38cvss 5.8epss 0.00

    NVIDIA vGPU software contains a vulnerability in the virtual GPU manager, where an attacker could cause an out-of-bound access. A successful exploit of this vulnerability might lead to data tampering, denial of service, or information disclosure.

  • CVE-2026-24215MedMay 20, 2026
    risk 0.37cvss 5.7epss 0.00

    NVIDIA Triton Inference Server contains a vulnerability in the DALI backend, where an attacker could cause uncontrolled resource consumption. A successful exploit of this vulnerability might lead to denial of service.

  • CVE-2025-23272MedSep 24, 2025
    risk 0.37cvss 5.7epss 0.00

    NVIDIA nvJPEG library contains a vulnerability where an attacker can cause an out-of-bounds read by means of a specially crafted JPEG file. A successful exploit of this vulnerability might lead to information disclosure or denial of service.

  • CVE-2026-24198MedMay 26, 2026
    risk 0.36cvss 5.6epss 0.00

    NVIDIA GPU Display Driver for Linux contains a vulnerability where an advanced attacker could use a race condition to leak sensitive memory, which might cause limited exposure of sensitive information to an unauthorized actor. A successful exploit of this vulnerability might…

  • CVE-2026-24160MedMay 20, 2026
    risk 0.36cvss 5.5epss 0.00

    NVIDIA TRT-LLM for any platform contains a vulnerability where an attacker could cause an unchecked return value to a null pointer dereference. A successful exploit of this vulnerability might lead to denial of service.

  • CVE-2025-33237MedJan 28, 2026
    risk 0.36cvss 5.5epss 0.00

    NVIDIA HD Audio Driver for Windows contains a vulnerability where an attacker could exploit a NULL pointer dereference issue. A successful exploit of this vulnerability might lead to a denial of service.

  • CVE-2025-23330MedOct 23, 2025
    risk 0.36cvss 5.5epss 0.00

    NVIDIA Display Driver for Linux contains a vulnerability where an attacker might be able to trigger a null pointer dereference. A successful exploit of this vulnerability might lead to denial of service.

  • CVE-2025-23300MedOct 23, 2025
    risk 0.36cvss 5.5epss 0.00

    NVIDIA Display Driver for Linux contains a vulnerability in the kernel driver, where a user could cause a null pointer dereference by allocating a specific memory resource. A successful exploit of this vulnerability might lead to denial of service.

  • CVE-2025-33177MedOct 14, 2025
    risk 0.36cvss 5.5epss 0.00

    NVIDIA Jetson Linux and IGX OS contain a vulnerability in NvMap, where improper tracking of memory allocations could allow a local attacker to cause memory overallocation. A successful exploitation of this vulnerability might lead to denial of service.

  • CVE-2025-23261MedSep 4, 2025
    risk 0.36cvss 5.5epss 0.00

    NVIDIA Cumulus Linux and NVOS products contain a vulnerability, where hashed user passwords are not properly suppressed in log files, potentially disclosing information to unauthorized users.

  • CVE-2025-23285MedAug 2, 2025
    risk 0.36cvss 5.5epss 0.00

    NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where it allows a guest to access global resources. A successful exploit of this vulnerability might lead to denial of service.

  • CVE-2025-23289MedJul 31, 2025
    risk 0.36cvss 5.5epss 0.00

    NVIDIA Omniverse Launcher for Windows and Linux contains a vulnerability in the launcher logs, where a user could cause sensitive information to be written to the log files through proxy servers. A successful exploit of this vulnerability might lead to information disclosure.

  • CVE-2025-23246MedMay 1, 2025
    risk 0.36cvss 5.5epss 0.00

    NVIDIA vGPU software for Windows and Linux contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it allows a guest to consume uncontrolled resources. A successful exploit of this vulnerability might lead to denial of service.

  • CVE-2025-23245MedMay 1, 2025
    risk 0.36cvss 5.5epss 0.00

    NVIDIA vGPU software for Windows and Linux contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it allows a guest to access global resources. A successful exploit of this vulnerability might lead to denial of service.

  • CVE-2024-53881MedJan 28, 2025
    risk 0.36cvss 5.5epss 0.00

    NVIDIA vGPU software contains a vulnerability in the host driver, where it can allow a guest to cause an interrupt storm on the host, which may lead to denial of service.

  • CVE-2024-53869MedJan 28, 2025
    risk 0.36cvss 5.5epss 0.00

    NVIDIA Unified Memory driver for Linux contains a vulnerability where an attacker could leak uninitialized memory. A successful exploit of this vulnerability might lead to information disclosure.

  • CVE-2024-0147MedJan 28, 2025
    risk 0.36cvss 5.5epss 0.00

    NVIDIA GPU display driver for Windows and Linux contains a vulnerability where referencing memory after it has been freed can lead to denial of service or data tampering.

  • CVE-2024-0094MedJun 13, 2024
    risk 0.36cvss 5.5epss 0.00

    NVIDIA vGPU software for Linux contains a vulnerability in the Virtual GPU Manager, where an untrusted guest VM can cause improper control of the interaction frequency in the host. A successful exploit of this vulnerability might lead to denial of service.

  • CVE-2018-6253MedApr 2, 2018
    risk 0.36cvss 5.5epss 0.00

    NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers where a specially crafted pixel shader can cause infinite recursion leading to denial of service.

  • CVE-2018-6252MedApr 2, 2018
    risk 0.36cvss 5.5epss 0.00

    NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiEscape where the software allows an actor access to restricted functionality that is unnecessary to production usage, and which may result in denial of service.

  • CVE-2017-6288MedMar 12, 2018
    risk 0.36cvss 5.5epss 0.00

    NVIDIA libnvrm contains a possible out of bounds read due to a missing bounds check which could lead to local information disclosure. This issue is rated as moderate. Product: Android. Version: N/A. Android: A-65482562. Reference: N-CVE-2017-6288.

  • CVE-2017-6287MedMar 12, 2018
    risk 0.36cvss 5.5epss 0.00

    NVIDIA libnvrm contains a possible out of bounds read due to a missing bounds check which could lead to local information disclosure. This issue is rated as moderate.Product: Android. Version: N/A. Android: A-64893264. Reference: N-CVE-2017-6287.

  • CVE-2017-6285MedMar 12, 2018
    risk 0.36cvss 5.5epss 0.00

    NVIDIA libnvrm contains a possible out of bounds read due to a missing bounds check which could lead to local information disclosure. This issue is rated as moderate. Product: Android. Version: N/A. Android: A-64893156. Reference: N-CVE-2017-6285.

  • CVE-2017-6284MedMar 6, 2018
    risk 0.36cvss 5.5epss 0.00

    NVIDIA Security Engine contains a vulnerability in the Deterministic Random Bit Generator (DRBG) where the DRBG does not properly initialize and store or transmits sensitive data using a weakened encryption scheme that is unable to protect sensitive data which may lead to…

  • CVE-2017-6283MedMar 6, 2018
    risk 0.36cvss 5.5epss 0.00

    NVIDIA Security Engine contains a vulnerability in the RSA function where the keyslot read/write lock permissions are cleared on a chip reset which may lead to information disclosure. This issue is rated as high.

  • CVE-2017-6271MedSep 22, 2017
    risk 0.36cvss 5.5epss 0.00

    NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiCreateAllocation where untrusted user input is used as a divisor without validation while processing block linear information which may lead to a potential divide by zero and…

  • CVE-2017-6270MedSep 22, 2017
    risk 0.36cvss 5.5epss 0.00

    NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiCreateAllocation where untrusted user input is used as a divisor without validation during a calculation which may lead to a potential divide by zero and denial of service.

  • CVE-2017-6267MedSep 22, 2017
    risk 0.36cvss 5.5epss 0.00

    NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where an incorrect initialization of internal objects can cause an infinite loop which may lead to a denial of service.

  • CVE-2017-6266MedSep 22, 2017
    risk 0.36cvss 5.5epss 0.00

    NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow unprivileged users to cause a denial of service.

  • CVE-2017-0326MedJul 7, 2017
    risk 0.36cvss 5.5epss 0.00

    An information disclosure vulnerability in the NVIDIA Video Driver due to an out-of-bounds read function in the Tegra Display Controller driver could result in possible information disclosure. This issue is rated as Moderate. Product: Android. Version: N/A. Android ID:…

  • CVE-2017-0355MedMay 9, 2017
    risk 0.36cvss 5.5epss 0.00

    All versions of the NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer handler for DxgkDdiEscape where it may access paged memory while holding a spinlock, leading to a denial of service.

  • CVE-2017-0353MedMay 9, 2017
    risk 0.36cvss 5.5epss 0.00

    All versions of the NVIDIA GPU Display Driver contain a vulnerability in the kernel mode layer handler for DxgDdiEscape where due to improper locking on certain conditions may lead to a denial of service

  • CVE-2017-0336MedMar 8, 2017
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability in the NVIDIA GPU driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product:…

  • CVE-2017-0334MedMar 8, 2017
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability in the NVIDIA GPU driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product:…

  • CVE-2017-0320MedFeb 15, 2017
    risk 0.36cvss 5.5epss 0.00

    All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer handler where improper handling of values may cause a denial of service on the system.

  • CVE-2017-0319MedFeb 15, 2017
    risk 0.36cvss 5.5epss 0.00

    All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer handler where improper handling of values may cause a denial of service on the system.

  • CVE-2017-0318MedFeb 15, 2017
    risk 0.36cvss 5.5epss 0.00

    All versions of NVIDIA Linux GPU Display Driver contain a vulnerability in the kernel mode layer handler where improper validation of an input parameter may cause a denial of service on the system.

  • CVE-2017-0448MedFeb 8, 2017
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability in the NVIDIA video driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product:…

  • CVE-2016-8460MedJan 12, 2017
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability in the NVIDIA video driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product:…

  • CVE-2016-8400MedJan 12, 2017
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability in the NVIDIA librm library (libnvrm) could enable a local malicious application to access data outside of its permission levels. This issue is rated as Moderate because it could be used to access sensitive data without permission.…

  • CVE-2016-8397MedJan 12, 2017
    risk 0.36cvss 5.5epss 0.01

    An information disclosure vulnerability in the NVIDIA video driver could enable a local malicious application to access data outside of its permission levels. This issue is rated as High because it could be used to access sensitive data without explicit user permission. Product:…

  • CVE-2016-8826MedDec 16, 2016
    risk 0.36cvss 5.5epss 0.00

    All versions of NVIDIA GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys for Windows or nvidia.ko for Linux) where a user can cause a GPU interrupt storm, leading to a denial of service.

Page 7 of 21