Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2015-5053
HistoryNov 24, 2015 - 8:59 p.m.

CVE-2015-5053

2015-11-2420:59:02
CWE-284
mitre
web.nvd.nist.gov
26
nvidia
gpu
graphics driver
r346
r352
linux
grid vgpu
vsga
privilege escalation
denial of service
cve-2015-5053
nvd

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

High

EPSS

0.003

Percentile

65.2%

JSON

The host memory mapping path feature in the NVIDIA GPU graphics driver R346 before 346.87 and R352 before 352.41 for Linux and R352 before 352.46 for GRID vGPU and vSGA does not properly restrict access to third-party device IO memory, which allows attackers to gain privileges, cause a denial of service (resource consumption), or possibly have unspecified other impact via unknown vectors related to the follow_pfn kernel-mode API call.

Affected configurations

Nvd
Node
nvidiagpu_driverMatch346.16
OR
nvidiagpu_driverMatch346.22
OR
nvidiagpu_driverMatch346.35
OR
nvidiagpu_driverMatch346.47
OR
nvidiagpu_driverMatch346.59
OR
nvidiagpu_driverMatch346.72
OR
nvidiagpu_driverMatch346.82
OR
nvidiagpu_driverMatch352.09
OR
nvidiagpu_driverMatch352.21
OR
nvidiagpu_driverMatch352.30
OR
nvidiagpu_driverMatch352.41
VendorProductVersionCPE
nvidiagpu_driver346.16cpe:2.3:a:nvidia:gpu_driver:346.16:*:*:*:*:*:*:*
nvidiagpu_driver346.22cpe:2.3:a:nvidia:gpu_driver:346.22:*:*:*:*:*:*:*
nvidiagpu_driver346.35cpe:2.3:a:nvidia:gpu_driver:346.35:*:*:*:*:*:*:*
nvidiagpu_driver346.47cpe:2.3:a:nvidia:gpu_driver:346.47:*:*:*:*:*:*:*
nvidiagpu_driver346.59cpe:2.3:a:nvidia:gpu_driver:346.59:*:*:*:*:*:*:*
nvidiagpu_driver346.72cpe:2.3:a:nvidia:gpu_driver:346.72:*:*:*:*:*:*:*
nvidiagpu_driver346.82cpe:2.3:a:nvidia:gpu_driver:346.82:*:*:*:*:*:*:*
nvidiagpu_driver352.09cpe:2.3:a:nvidia:gpu_driver:352.09:*:*:*:*:*:*:*
nvidiagpu_driver352.21cpe:2.3:a:nvidia:gpu_driver:352.21:*:*:*:*:*:*:*
nvidiagpu_driver352.30cpe:2.3:a:nvidia:gpu_driver:352.30:*:*:*:*:*:*:*
Rows per page:
1-10 of 111

Related

prion 1
ubuntucve 1
debiancve 1
cvelist 1
nvd 1
lenovo 1
prion
prion
Path traversal
2015-11-24 20:59:00
ubuntucve
ubuntucve
CVE-2015-5053
2015-11-24 00:00:00
debiancve
debiancve
CVE-2015-5053
2015-11-24 20:59:02
cvelist
cvelist
CVE-2015-5053
2015-11-24 20:00:00
nvd
nvd
CVE-2015-5053
2015-11-24 20:59:02
lenovo
lenovo
Memory corruption due to an unsanitized pointer in the NVIDIA display driver
2016-08-14 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.7

Confidence

High

EPSS

0.003

Percentile

65.2%

JSON
Related for CVE-2015-5053
prion1ubuntucve1debiancve1cvelist1nvd1lenovo1