CVE-2021-1075

NVIDIA Windows GPU Display Driver for Windows, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape where the program dereferences a pointer that contains a location for memory that is no longer valid, which may lead to code execution, denial of service, or escalation of privileges. Attacker does not have any control over the information and may conduct limited data modification.

Published: Apr 22, 2021
Updated: Apr 14, 2023
CVE: CVE-2021-1075
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.3
AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:H

CVSS v2:

Severity: Medium
Score: 5.6
AV:L/AC:L/Au:N/C:N/I:P/A:C

CWEs:

CWE-476

Affected Software
References

Software	From	Fixed in
nvidia / gpu_display_driver	418	427.33
nvidia / gpu_display_driver	465	466.11
nvidia / gpu_display_driver	450	452.96
nvidia / gpu_display_driver	460	462.31

https://nvidia.custhelp.com/app/answers/detail/a_id/5172

Vulnerability Database

290,020

CVE-2021-1075