Nvidia: Attackers can push malicious code through graphics card driver gap
Attacks on Windows PCs with GeForce or RTX graphics cards, among others, are possible. However, there are no reports of attacks yet.
The developers at Nvidia have plugged a loophole for malicious code in current graphics card drivers. There are currently no reports of ongoing attacks.
According to an article, Windows computers with GeForce, Telsa or RTX GPUs are at risk from the vulnerability (CVE-2024-0107"high"). The vulnerability is said to affect the user mode layer. Here, an unprivileged regular user could provoke a memory error (out-of-bounds) and, in the worst case, execute malicious code.
Nvidia assures that it has solved the problem in the following driver versions. All previous versions are vulnerable.
- 475.14
- 538.78
- 552.74
- 556.12
(des)