Vulnerability Description
For the NVIDIA Quadro, NVS, GeForce, and Tesla products, NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys for Windows or nvidia.ko for Linux) handler where a missing permissions check may allow users to gain access to arbitrary physical memory, leading to an escalation of privileges.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nvidia | Gpu Driver | 304.131 |
| Nvidia | Geforce 910M | - |
| Nvidia | Geforce 920M | - |
| Nvidia | Geforce 920Mx | - |
| Nvidia | Geforce 930M | - |
| Nvidia | Geforce 930Mx | - |
| Nvidia | Geforce 940M | - |
| Nvidia | Geforce 940Mx | - |
| Nvidia | Geforce 945M | - |
| Nvidia | Geforce Gt 710 | - |
| Nvidia | Geforce Gt 730 | - |
| Nvidia | Geforce Gtx 1050 | - |
| Nvidia | Geforce Gtx 1060 | - |
| Nvidia | Geforce Gtx 1070 | - |
| Nvidia | Geforce Gtx 1080 | - |
| Nvidia | Geforce Gtx 950M | - |
| Nvidia | Geforce Gtx 960M | - |
| Nvidia | Geforce Gtx 965M | - |
| Nvidia | Nvs 310 | - |
| Nvidia | Nvs 315 | - |
Related Weaknesses (CWE)
References
- http://nvidia.custhelp.com/app/answers/detail/a_id/4246PatchVendor Advisory
- http://nvidia.custhelp.com/app/answers/detail/a_id/4247PatchVendor Advisory
- http://www.securityfocus.com/bid/94177Third Party AdvisoryVDB Entry
- https://support.lenovo.com/us/en/solutions/LEN-10822
- http://nvidia.custhelp.com/app/answers/detail/a_id/4246PatchVendor Advisory
- http://nvidia.custhelp.com/app/answers/detail/a_id/4247PatchVendor Advisory
- http://www.securityfocus.com/bid/94177Third Party AdvisoryVDB Entry
- https://support.lenovo.com/us/en/solutions/LEN-10822
FAQ
What is CVE-2016-7382?
CVE-2016-7382 is a vulnerability with a CVSS score of 7.8 (HIGH). For the NVIDIA Quadro, NVS, GeForce, and Tesla products, NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys for Windows or nvidia.ko for Linux) handler where a m...
How severe is CVE-2016-7382?
CVE-2016-7382 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-7382?
Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Gpu Driver, Nvidia Geforce 910M, Nvidia Geforce 920M, Nvidia Geforce 920Mx, Nvidia Geforce 930M.