CVE-2020-5963

CWE-269 — Improper Privilege Management9 documents6 sources

Severity

7.8HIGH

EPSS

0.1%

top 83.31%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nvidia Geforce Firmware Nvidia NVS Firmware Nvidia Quadro Firmware +3 more

Timeline

PublishedJun 25

Latest updateMay 24

Description

NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the Inter Process Communication APIs, in which improper access control may lead to code execution, denial of service, or information disclosure.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages22 packages

▶CVEListV5nvidia/nvidia_gpu_display_driverAll

▶Debiannvidia-graphics-drivers< 440.100-1+3

▶Ubuntunvidia-graphics-drivers-390< 390.138-0ubuntu0.18.04.1+1

▶Ubuntunvidia-graphics-drivers-440< 440.100-0ubuntu0.18.04.1+1

▶Debiannvidia-graphics-drivers-tesla-418< 418.152.00-1

Also affects: Ubuntu Linux 18.04, 19.10, 20.04

🔴Vulnerability Details

GHSA

GHSA-3fx9-g477-r6f6: NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the Inter Process Communication APIs, in which improper access control ma↗2022-05-24

▶

CVEList

CVE-2020-5963: NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the Inter Process Communication APIs, in which improper access control ma↗2020-06-25

▶

OSV

CVE-2020-5963: NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the Inter Process Communication APIs, in which improper access control ma↗2020-06-25

▶

OSV

nvidia-graphics-drivers-390, nvidia-graphics-drivers-440 vulnerabilities↗2020-06-25

▶

OSV

linux kernel vulnerabilities↗2020-06-25

▶

📋Vendor Advisories

Ubuntu

Linux kernel vulnerabilities↗2020-06-25

▶

Ubuntu

NVIDIA graphics drivers vulnerabilities↗2020-06-25

▶

Debian

CVE-2020-5963: nvidia-graphics-drivers - NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the...↗2020

▶