CVE-2020-5964

HIGH

NVIDIA Windows GPU Display Driver - Code Execution

Title source: llm
STIX 2.1

Description

NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the service host component, in which the application resources integrity check may be missed. Such an attack may lead to code execution, denial of service or information disclosure.

References (2)

Core 2
Core References
Vendor Advisory x_refsource_confirm
https://nvidia.custhelp.com/app/answers/detail/a_id/5031
Vendor Advisory x_refsource_confirm
https://nvidia.custhelp.com/app/answers/detail/a_id/5038

Scores

CVSS v3 7.8
EPSS 0.0007
EPSS Percentile 22.2%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-345
Status published
Products (5)
nvidia/geforce_experience < 3.20.4
nvidia/geforce_firmware 450 - 451.48
nvidia/nvs_firmware 390 - 392.61
nvidia/quadro_firmware 390 - 392.61
nvidia/tesla_firmware 418 - 426.78
Published Jun 25, 2020
Tracked Since Feb 18, 2026