CVE-2019-5687
UnknownEPSS 0.29%
Last modified
CVE-2019-5687 is a vulnerability of currently unknown severity. NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which an incorrect use of default permissions for an object exposes it to an unintended actor. EPSS estimates a 0.29% chance of exploitation in the next 30 days.
Description
NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which an incorrect use of default permissions for an object exposes it to an unintended actor
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Nvidia | Gpu Driver | All versions |
References
- https://nvidia.custhelp.com/app/answers/detail/a_id/4841Vendor Advisory
- https://support.lenovo.com/us/en/product_security/LEN-28096Third Party Advisory
- https://nvidia.custhelp.com/app/answers/detail/a_id/4841Vendor Advisory
- https://support.lenovo.com/us/en/product_security/LEN-28096Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2019-5687?
NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which an incorrect use of default permissions for an object exposes it to an unintended actor
How severe is CVE-2019-5687?
Severity scoring for CVE-2019-5687 is pending analysis. The EPSS model estimates a 0.29% probability of exploitation in the next 30 days.
How do I fix CVE-2019-5687?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.
Are you affected by CVE-2019-5687?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST