ID CVE-2016-8819
Summary All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where a handle to a kernel object may be returned to the user, leading to possible denial of service or escalation of privileges.
References
Vulnerable Configurations
  • cpe:2.3:a:nvidia:gpu_driver:-:*:*:*:*:*:*:*
    cpe:2.3:a:nvidia:gpu_driver:-:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
CVSS
Base: 7.2 (as of 24-12-2016 - 02:59)
Impact:
Exploitability:
CWE CWE-775
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:L/AC:L/Au:N/C:C/I:C/A:C
refmap via4
bid 95058
confirm http://nvidia.custhelp.com/app/answers/detail/a_id/4257
Last major update 24-12-2016 - 02:59
Published 16-12-2016 - 21:59
Last modified 24-12-2016 - 02:59
Back to Top