CVE-2019-5684

Name of the Vulnerable Software and Affected Versions NVIDIA Windows GPU Display Driver (all versions) VMware ESXi, Workstation and Fusion (affected versions not specified)

Description The issue is related to a vulnerability in DirectX drivers, specifically in the pixel shader functionality, where a specially crafted shader can cause an out of bounds access of an input texture array. This may lead to denial of service or code execution. The vulnerability is also associated with a buffer overflow, allowing an attacker to potentially execute arbitrary code.

Recommendations For NVIDIA Windows GPU Display Driver, consider disabling the use of specially crafted shaders until a patch is available. For VMware ESXi, Workstation and Fusion, restrict access to the pixel shader functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.