CVE-2016-8824

Опубликовано: 16 дек. 2016

Источник: nvd

CVSS3: 7.8

CVSS2: 7.2

EPSS Низкий

Описание

All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape where improper access controls allow a regular user to write a part of the registry intended for privileged users only, leading to escalation of privileges.

Ссылки

http://nvidia.custhelp.com/app/answers/detail/a_id/4278
Patch
Vendor Advisory
http://www.securityfocus.com/bid/95015
Third Party Advisory
VDB Entry
http://nvidia.custhelp.com/app/answers/detail/a_id/4278
Patch
Vendor Advisory
http://www.securityfocus.com/bid/95015
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:nvidia:gpu_driver:-:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 13%

0.00044

Низкий

7.8 High

CVSS3

7.2 High

CVSS2

Дефекты

CWE-284

Связанные уязвимости

GHSA-3pg8-5qjj-jmqc