Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5.5
CVSSv3

CVE-2018-6253

Published: 02/04/2018 Updated: 03/10/2019
CVSS v2 Base Score: 4.9 | Impact Score: 6.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 436
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C
Subscribe to Nvidia

Vulnerability Summary

NVIDIA GPU Display Driver contains a vulnerability in the DirectX and OpenGL Usermode drivers where a specially crafted pixel shader can cause infinite recursion leading to denial of service.

Vulnerable Product Search on Vulmon Subscribe to Product

nvidia gpu_driver -

Vendor Advisories

Debian CVElist Bug Report Logs: nvidia-graphics-drivers: CVE-2018-6249, CVE-2018-6253: null pointer dereference and infinite recursion due to malformed shader
Debian Bug report logs - #894338 nvidia-graphics-drivers: CVE-2018-6249, CVE-2018-6253: null pointer dereference and infinite recursion due to malformed shader Package: src:nvidia-graphics-drivers; Maintainer for src:nvidia-graphics-drivers is Debian NVIDIA Maintainers <pkg-nvidia-devel@listsaliothdebianorg>; Reported by: ...
Ubuntu Security Notice: nvidia-graphics-drivers-384 vulnerabilities
NVIDIA graphics drivers could be made to crash or run programs as an administrator ...
Amazon Linux AMI: ALAS-2018-991
NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkmsys) handler for DxgkDdiEscape where a NULL pointer dereference may lead to denial of service or possible escalation of privileges (CVE-2018-6247) NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiEscap ...

References

CWE-835http://nvidia.custhelp.com/app/answers/detail/a_id/4649https://www.talosintelligence.com/vulnerability_reports/TALOS-2018-0522https://usn.ubuntu.com/3662-1/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=894338https://usn.ubuntu.com/3662-1/https://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463CVE-2024-29895injectCVE-2023-52689CVE-2024-5049CVE-2024-5051privilege escalationphysicalCVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook