CVE-2015-5950

The NVIDIA display driver R352 before 353.82 and R340 before 341.81 on Windows; R304 before 304.128, R340 before 340.93, and R352 before 352.41 on Linux; and R352 before 352.46 on GRID vGPU and vSGA allows local users to write to an arbitrary kernel memory location and consequently gain privileges via a crafted ioctl call.

Published: Sep 30, 2015
Updated: Apr 13, 2023
CVE: CVE-2015-5950
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.9
AV:L/AC:M/Au:N/C:C/I:C/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
nvidia / gpu_driver	-	352.30.x
nvidia / display_driver	-	352.09.x
nvidia / display_driver	304.123	304.123.x
nvidia / display_driver	304.121	304.121.x
nvidia / display_driver	352.21	352.21.x
nvidia / display_driver	352.30	352.30.x
nvidia / display_driver	304.119	304.119.x
nvidia / display_driver	304.125	304.125.x
nvidia / display_driver	304.108	304.108.x
nvidia / display_driver	-	352.86.x
nvidia / display_driver	340.43	340.43.x
nvidia / display_driver	340.52	340.52.x
nvidia / display_driver	341.44	341.44.x
nvidia / display_driver	353.06	353.06.x

Vulnerability Database

289,697

CVE-2015-5950