NVIDIA Windows GPU Display Driver R340 and R375 Vulnerability: Kernel Memory Write Privilege Escalation

NVIDIA Windows GPU Display Driver R340 and R375 Vulnerability: Kernel Memory Write Privilege Escalation

CVE-2016-7391 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x100010b where a missing array bounds check can allow a user to write to kernel memory, leading to denial of service or potential escalation of privileges.

Learn more about our User Device Pen Test.