NVIDIA released a security update for the NVIDIA GPU Display Driver software to patch eight security issues that could lead to code execution, escalation of privileges, denial of service, or information disclosure on both Windows and Linux machines.
While all these software flaws require local user access and cannot be exploited remotely, attackers could take advantage of them by remotely planting malicious tools through various means on a system running a vulnerable NVIDIA GPU Display Driver.
The issues come with CVSS V3 base scores ranging from 2.2 to 8.8, with five of them having received an 8.8 risk assessment from NVIDIA (all of them impacting the NVIDIA Windows GPU Display Driver), while the 2.2 base score was assigned to the only flaw affecting both Windows and Linux machines.