02-26-2019 , 03:26 AM
Quote: NVIDIA released a security update for the NVIDIA GPU Display Driver software to patch eight security issues that could lead to code execution, escalation of privileges, denial of service, or information disclosure on both Windows and Linux machines.
While all these software flaws require local user access and cannot be exploited remotely, attackers could take advantage of them by remotely planting malicious tools through various means on a system running a vulnerable NVIDIA GPU Display Driver.
The issues come with CVSS V3 base scores ranging from 2.2 to 8.8, with five of them having received an 8.8 risk assessment from NVIDIA (all of them impacting the NVIDIA Windows GPU Display Driver), while the 2.2 base score was assigned to the only flaw affecting both Windows and Linux machines.
The NVIDIA GPU Display Driver - February 2019 security bulletin also contains a full list of software products affected by the security issues patched by NVIDIA in their February 2019 Security Update.
All users are advised to update their drivers as soon as possible by applying the security update available on the NVIDIA Driver Downloads page.