Vulnerability Description
All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscapeID 0x100008b where user provided input is used as the limit for a loop may lead to denial of service or potential escalation of privileges
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nvidia | Gpu Driver | - |
| Microsoft | Windows | - |
Related Weaknesses (CWE)
References
- http://nvidia.custhelp.com/app/answers/detail/a_id/4398Vendor Advisory
- https://www.exploit-db.com/exploits/41364/
- http://nvidia.custhelp.com/app/answers/detail/a_id/4398Vendor Advisory
- https://www.exploit-db.com/exploits/41364/
FAQ
What is CVE-2017-0312?
CVE-2017-0312 is a vulnerability with a CVSS score of 7.8 (HIGH). All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscapeID 0x100008b where user provided input is used as the limit f...
How severe is CVE-2017-0312?
CVE-2017-0312 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-0312?
Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Gpu Driver, Microsoft Windows.