Skip to main content

NVIDIA Display Driver CVE-2026-24190

| EUVDEUVD-2026-31930 HIGH
Missing Authorization (CWE-862)
2026-05-26 nvidia GHSA-95fc-m9jj-88x5
7.8
CVSS 3.1 · Vendor: nvidia
Share

Severity by source

Vendor (nvidia) PRIMARY
7.8 HIGH
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
SUSE
HIGH
qualitative

Primary rating from Vendor (nvidia).

CVSS VectorVendor: nvidia

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Lifecycle Timeline

2
Analysis Generated
Jun 08, 2026 - 10:07 vuln.today
CVE Published
May 26, 2026 - 17:22 nvd
HIGH 7.8

DescriptionCVE.org

NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a user could cause improper access to GPU resources. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

AnalysisAI

Local privilege escalation in NVIDIA Display Driver for Windows and Linux allows authenticated low-privilege users to improperly access GPU resources via a kernel mode layer flaw, potentially leading to code execution, privilege escalation, information disclosure, data tampering, and denial of service. The issue affects GeForce, RTX/Quadro/NVS, and Tesla product lines across multiple driver branches and carries a CVSS 7.8 (High) score. No public exploit identified at time of analysis, and EPSS probability is very low (0.01%), but the breadth of affected hardware and total technical impact warrant prompt patching.

Technical ContextAI

The vulnerability resides in the kernel-mode component of NVIDIA's GPU display driver - the privileged Windows nvlddmkm.sys / Linux nvidia.ko module responsible for mediating user-space requests to GPU hardware. The CWE-862 (Missing Authorization) classification indicates the kernel driver fails to properly validate whether a calling user context is permitted to perform a given operation on GPU resources (likely via IOCTL or device-node interactions), allowing an unprivileged local user to reach code paths or memory regions that should require higher privileges. CPE data confirms the flaw spans NVIDIA's consumer (GeForce), professional workstation (RTX, Quadro, NVS), and datacenter (Tesla) product families across both Windows and Linux driver builds, with the GeForce line specifically limited to Maxwell, Volta, and Pascal architectures per the vendor advisory.

RemediationAI

Apply the vendor-released patched drivers from NVIDIA's security bulletin at https://nvidia.custhelp.com/app/answers/detail/a_id/5821: upgrade Windows GeForce/RTX/Quadro/NVS/Tesla drivers to 596.36 or later (or to 582.53 / 539.72 if pinned to an older supported branch), and Linux drivers to 595.71.05, 580.159.03, or 535.309.01 depending on the production branch in use. Because the flaw requires local low-privileged access, interim compensating controls include restricting interactive and remote-desktop logon to trusted accounts, enforcing application allow-listing to prevent unprivileged users from running untrusted binaries that could call the vulnerable IOCTLs, and on multi-tenant or VDI/GPU-passthrough hosts prioritizing the update because any tenant becomes a candidate attacker - note that disabling the GPU driver entirely is not a realistic mitigation on workstations and would break display and CUDA workloads.

More in Nvidia

View all
CVE-2016-1741 CRITICAL POC
9.8 Mar 24

The NVIDIA driver in the Graphics Drivers subsystem in Apple OS X before 10.11.4 allows attackers to execute arbitrary c

CVE-2013-0109 HIGH POC
7.2 Apr 08

The NVIDIA driver before 307.78, and Release 310 before 311.00, in the NVIDIA Display Driver service on Windows does not

CVE-2019-5684 CRITICAL POC
10.0 Aug 06

NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in DirectX drivers, in which a specially craft

CVE-2026-24207 CRITICAL POC
9.8 May 20

Authentication bypass in NVIDIA Triton Inference Server allows unauthenticated remote attackers to reach protected funct

CVE-2019-5685 CRITICAL POC
9.8 Aug 06

NVIDIA Windows GPU Display Driver (all versions) contains a vulnerability in DirectX drivers, in which a specially craft

CVE-2025-23359 HIGH POC
8.3 Feb 12

NVIDIA Container Toolkit for Linux contains a Time-of-Check Time-of-Use (TOCTOU) vulnerability when used with default co

CVE-2016-8812 HIGH POC
8.8 Nov 08

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA GeForce Experience R340 before GFE 2.11.4.125 and R375 before G

CVE-2016-1861 HIGH POC
7.8 Jun 19

The NVIDIA Graphics Drivers subsystem in Apple OS X before 10.11.5 allows attackers to execute arbitrary code in a privi

CVE-2024-0132 HIGH POC
8.3 Sep 26

NVIDIA Container Toolkit 1.16.1 or earlier contains a Time-of-check Time-of-Use (TOCTOU) vulnerability when used with de

CVE-2016-1846 HIGH POC
7.8 May 20

The nvCommandQueue::GetHandleIndex method in the NVIDIA Graphics Drivers subsystem in Apple OS X before 10.11.5 allows a

CVE-2015-7865 HIGH POC
7.7 Nov 24

nvSCPAPISvr.exe in the Stereoscopic 3D Driver Service in the NVIDIA GPU graphics driver R340 before 341.92, R352 before

CVE-2016-8811 HIGH POC
7.8 Nov 08

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 3

Vendor StatusVendor

SUSE

Severity: High
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed
SUSE Linux Enterprise Micro 5.3 Fixed

Share

CVE-2026-24190 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy