CVE-2019-5692

CWE-129Improper Array Index Validation3 documents3 sources
Severity
7.8HIGH
EPSS
0.0%
top 87.54%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Nvidia Nvidia GPU Display Driver
Timeline
PublishedNov 9
Latest updateMay 24

Description

NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the product uses untrusted input when calculating or using an array index, which may lead to escalation of privileges or denial of service.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages1 packages

Patches

Patch: nvidia.custhelp.comPatch: nvidia.custhelp.com

🔴Vulnerability Details

2
GHSA
GHSA-r9mx-c64j-hf3f: NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm2022-05-24
CVEList
CVE-2019-5692: NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm2019-11-09
CVE-2019-5692 (HIGH CVSS 7.8) | NVIDIA Windows GPU Display Driver | cvebase.io