CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
5.1%
NVIDIA drivers (nvidia-drivers) before 1.0.7185, 1.0.9639, and 100.14.11, as used in Gentoo Linux and possibly other distributions, creates /dev/nvidia* device files with insecure permissions, which allows local users to modify video card settings, cause a denial of service (crash or physical video card damage), and obtain sensitive information.
Vendor | Product | Version | CPE |
---|---|---|---|
gentoo | linux | * | cpe:2.3:o:gentoo:linux:*:*:*:*:*:*:*:* |
nvidia | video_driver | * | cpe:2.3:a:nvidia:video_driver:*:*:*:*:*:*:*:* |