Name of the Vulnerable Software and Affected Versions: NVIDIA GPU Display Driver for Linux versions prior to the fixed version NVIDIA GPU Display Driver for Windows versions prior to the fixed version

Description: The issue is related to improper input validation and null-pointer dereferences in the kernel mode layer of the NVIDIA GPU Display Driver, which may lead to denial of service, escalation of privileges, data tampering, and limited information disclosure. A local user with basic capabilities can exploit these vulnerabilities. The vulnerabilities also affect an optional D-Bus configuration file, potentially allowing code execution, denial of service, escalation of privileges, information disclosure, and data tampering.

Recommendations: For NVIDIA GPU Display Driver for Linux, update to a version that includes the security fixes. For NVIDIA GPU Display Driver for Windows, update to a version that includes the security fixes. As a temporary workaround, consider restricting access to the kernel mode layer and the optional D-Bus configuration file to minimize the risk of exploitation.