CVE-2016-7382
published 2016-11-08CVE-2016-7382: For the NVIDIA Quadro, NVS, GeForce, and Tesla products, NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys for Windows…
high7.8CVSS 3.0
AVLACLPRLUINSUCHIHAH
For the NVIDIA Quadro, NVS, GeForce, and Tesla products, NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys for Windows or nvidia.ko for Linux) handler where a missing permissions check may allow users to gain access to arbitrary physical memory, leading to an escalation of privileges.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | nvidia-graphics-drivers | < nvidia-graphics-drivers 367.57-1 (bookworm) | nvidia-graphics-drivers 367.57-1 (bookworm) |
| debian | nvidia-graphics-drivers-legacy-340xx | < nvidia-graphics-drivers 367.57-1 (bookworm) | nvidia-graphics-drivers 367.57-1 (bookworm) |
| nvidia | gpu_driver | — | — |
| nvidia | gpu_driver | — | — |
| nvidia | gpu_driver | — | — |
| nvidia | gpu_driver | — | — |
| nvidia | gpu_driver | — | — |
| nvidia | gpu_driver | — | — |
CVSS provenance
nvdv3.07.8HIGHCVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH