CVE-2017-0314
Last modified
CVE-2017-0314 is a vulnerability of currently unknown severity. All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) implementation of the SubmitCommandVirtual DDI (DxgkDdiSubmitCommandVirtual) where untrusted input is used to reference memory outside of the intended boundary of the buffer leading to denial of service or escalation of privileges.. EPSS estimates a 0.33% chance of exploitation in the next 30 days.
Description
All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) implementation of the SubmitCommandVirtual DDI (DxgkDdiSubmitCommandVirtual) where untrusted input is used to reference memory outside of the intended boundary of the buffer leading to denial of service or escalation of privileges.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Nvidia | Gpu Driver | All versions |
References
- http://nvidia.custhelp.com/app/answers/detail/a_id/4398Vendor Advisory
- http://nvidia.custhelp.com/app/answers/detail/a_id/4398Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2017-0314?
How severe is CVE-2017-0314?
How do I fix CVE-2017-0314?
Are you affected by CVE-2017-0314?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST