CVE-2016-2558
HIGHNVIDIA GPU Driver R340 < 341.95 and R352 < 354.74 - Privilege Escalation via Untrusted Pointer in Escape Interface
Title source: llmDescription
The Escape interface in the Kernel Mode Driver layer in the NVIDIA GPU graphics driver R340 before 341.95 and R352 before 354.74 on Windows allows local users to obtain sensitive information, cause a denial of service (crash), or gain privileges via unspecified vectors related to an untrusted pointer, which trigger uninitialized or out-of-bounds memory access.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://nvidia.custhelp.com/app/answers/detail/a_id/4061
Third Party Advisory x_refsource_confirm
https://support.lenovo.com/us/en/product_security/len_5551
Scores
CVSS v3
8.4
EPSS
0.0004
EPSS Percentile
11.8%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-119
Status
published
Products (2)
nvidia/gpu_driver_r340
431.61
nvidia/gpu_driver_r352
353.82
Published
Apr 12, 2016
Tracked Since
Feb 18, 2026