Skip to main content

NVIDIA GPU Display Driver CVE-2026-24198

| EUVDEUVD-2026-31924 MEDIUM
Information Exposure (CWE-200)
2026-05-26 nvidia GHSA-8gw2-w6v7-3m98
5.6
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.6 MEDIUM
AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H
SUSE
MEDIUM
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:H
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
High

Lifecycle Timeline

2
Analysis Generated
Jun 08, 2026 - 12:37 vuln.today
CVE Published
May 26, 2026 - 17:17 nvd
MEDIUM 5.6

DescriptionCVE.org

NVIDIA GPU Display Driver for Linux contains a vulnerability where an advanced attacker could use a race condition to leak sensitive memory, which might cause limited exposure of sensitive information to an unauthorized actor. A successful exploit of this vulnerability might lead to denial of service, data tampering, and information disclosure.

AnalysisAI

Race condition in NVIDIA GPU Display Driver for Linux allows a high-privileged local attacker to leak sensitive kernel or process memory, producing limited information disclosure alongside potential data tampering and denial of service. Affected product lines span GeForce, RTX/Quadro/NVS, and Tesla GPU families running Linux driver branches prior to 580.159.03 or 595.71.05. No public exploit code exists and this vulnerability is absent from the CISA KEV catalog; an EPSS of 0.01% (1st percentile) and SSVC classification of Exploitation: none together place it at the lowest tier of real-world exploitation priority.

Technical ContextAI

The vulnerability is rooted in a race condition within the NVIDIA GPU Display Driver kernel module for Linux, classified under CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor). Race conditions in kernel drivers arise when two concurrent execution paths access shared memory or driver state without adequate synchronization; a precisely timed attacker operation can observe transient intermediate states containing sensitive data. The affected driver code services three NVIDIA product families confirmed by CPE strings: cpe:2.3:a:nvidia:geforce, cpe:2.3:a:nvidia:rtx,_quadro,_nvs, and cpe:2.3:a:nvidia:tesla, all on Linux. CWE-200 here indicates the core failure is the inadvertent exposure of kernel or cross-process memory contents rather than a traditional write-primitive memory corruption flaw, which constrains the attacker's ability to achieve arbitrary code execution but still enables denial of service and selective data leakage. The SUSE tag in the intelligence feed indicates this has been confirmed or triaged on SUSE Linux distributions specifically.

RemediationAI

Upgrade the NVIDIA GPU Display Driver for Linux to version 580.159.03 or 595.71.05 (or later within the respective branch), as detailed in the NVIDIA security advisory at https://nvidia.custhelp.com/app/answers/detail/a_id/5821. The patch is vendor-confirmed available. Administrators on SUSE-based distributions should check for distribution-provided updated driver packages that bundle the fix rather than installing drivers directly from NVIDIA. If immediate patching is not operationally feasible, restrict access to GPU-equipped Linux systems so that only explicitly trusted, high-privilege service accounts interact with the driver; since exploitation requires local high-privilege access, eliminating untrusted privileged users from affected hosts removes the viable attacker population. Additionally, auditing sudoers and GPU-accessible user groups to enforce least-privilege reduces the attack surface without impacting GPU workloads. Note that GPU driver updates may require a system or service restart, which should be planned as a maintenance window for production GPU workloads.

Vendor StatusVendor

SUSE

Severity: Medium
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed
SUSE Linux Enterprise Micro 5.3 Fixed

Share

CVE-2026-24198 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy