CVE-2015-1170

The NVIDIA Display Driver R304 before 309.08, R340 before 341.44, R343 before 345.20, and R346 before 347.52 does not properly validate local client impersonation levels when performing a "kernel administrator check," which allows local users to gain administrator privileges via unspecified API calls.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:nvidia:gpu_driver_r304:*:*:*:*:*:*:*:*
cpe:2.3:a:nvidia:gpu_driver_r340:*:*:*:*:*:*:*:*
cpe:2.3:a:nvidia:gpu_driver_r343:*:*:*:*:*:*:*:*
cpe:2.3:a:nvidia:gpu_driver_r346:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2015-03-06 23:59

Updated : 2024-02-28 12:20


NVD link : CVE-2015-1170

Mitre link : CVE-2015-1170

CVE.ORG link : CVE-2015-1170


JSON object : View

Products Affected

nvidia

  • gpu_driver_r343
  • gpu_driver_r340
  • gpu_driver_r346
  • gpu_driver_r304
CWE
CWE-264

Permissions, Privileges, and Access Controls