Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2013-0109

CWE-119Buffer Overflow4 documents4 sources
Severity
7.2HIGH
EPSS
7.3%
top 8.31%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Nvidia Display Driver
Timeline
PublishedApr 8
Latest updateMay 5

Description

The NVIDIA driver before 307.78, and Release 310 before 311.00, in the NVIDIA Display Driver service on Windows does not properly handle exceptions, which allows local users to gain privileges or cause a denial of service (memory overwrite) via a crafted application.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDnvidia/display_driver307.00+1

Patches

Patch: www.nvidia.comPatch: www.nvidia.com

🔴Vulnerability Details

2
GHSA
GHSA-wgh6-4r95-rhc4: The NVIDIA driver before 3072022-05-05
CVEList
CVE-2013-0109: The NVIDIA driver before 3072013-04-08

💥Exploits & PoCs

1
Exploit-DB
Nvidia (nvsvc) Display Driver Service - Local Privilege Escalation (Metasploit)2013-12-17
CVE-2013-0109 (HIGH CVSS 7.2) | The NVIDIA driver before 307.78 | cvebase.io