CVE-2020-5967

Published Jun 25, 2020

Last updated 4 years ago

CVSS medium 4.7

Overview

Description: NVIDIA Linux GPU Display Driver, all versions, contains a vulnerability in the UVM driver, in which a race condition may lead to a denial of service.
Source: psirt@nvidia.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 4.7
Impact score: 3.6
Exploitability score: 1
Vector string: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 1.9
Impact score: 2.9
Exploitability score: 3.4
Vector string: AV:L/AC:M/Au:N/C:N/I:N/A:P

Weaknesses

nvd@nist.gov: CWE-362

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:nvidia:quadro_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "074EF973-5C90-49CB-846E-68B7B39D02F4",
            "versionEndExcluding": "390.138",
            "versionStartIncluding": "390"
          },
          {
            "criteria": "cpe:2.3:o:nvidia:quadro_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9498FB27-B6DC-48F9-9DDA-01C3A222FD3B",
            "versionEndExcluding": "440.100",
            "versionStartIncluding": "440"
          },
          {
            "criteria": "cpe:2.3:o:nvidia:quadro_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D4C5E9D-59EF-47AB-8B19-5F85CD936DA7",
            "versionEndExcluding": "450.51",
            "versionStartIncluding": "450"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:nvidia:quadro:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B56258A7-E289-426E-B8D1-309CCB54E893"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:nvidia:tesla_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4D536415-E0B6-422E-A346-DA9841E2DBCC",
            "versionEndExcluding": "418.152.00",
            "versionStartIncluding": "418"
          },
          {
            "criteria": "cpe:2.3:o:nvidia:tesla_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4573C32E-0E2C-42A7-B195-A44C71CCE098",
            "versionEndExcluding": "440.95.01",
            "versionStartIncluding": "440"
          },
          {
            "criteria": "cpe:2.3:o:nvidia:tesla_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8DCDEFB0-10DC-4974-AE0E-E40CC88D6C95",
            "versionEndExcluding": "450.51.05",
            "versionStartIncluding": "450"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:nvidia:tesla:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "75C6DE26-88F2-428E-B761-754BD027E015"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:nvidia:geforce_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "96FDA5AC-53F1-45EB-ACDF-7A1301E2C742",
            "versionEndExcluding": "390.138",
            "versionStartIncluding": "390"
          },
          {
            "criteria": "cpe:2.3:o:nvidia:geforce_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "82508D86-02FC-418E-AF84-730F519B1584",
            "versionEndExcluding": "440.100",
            "versionStartIncluding": "440"
          },
          {
            "criteria": "cpe:2.3:o:nvidia:geforce_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "38B9F854-7418-49B9-8FE7-201BF9C902DC",
            "versionEndExcluding": "450.51",
            "versionStartIncluding": "450"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:nvidia:geforce:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6B30520A-D378-4CC8-812D-3B443740D6E3"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:nvidia:nvs_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FAF2122B-1F96-4560-A915-5C8BDC6692B8",
            "versionEndExcluding": "390.138",
            "versionStartIncluding": "390"
          },
          {
            "criteria": "cpe:2.3:o:nvidia:nvs_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A588FF02-1524-4571-AF62-C132AD13AFCD",
            "versionEndExcluding": "440.100",
            "versionStartIncluding": "440"
          },
          {
            "criteria": "cpe:2.3:o:nvidia:nvs_firmware:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D4E391B3-447D-4007-ACF0-434DBF703F9D",
            "versionEndExcluding": "450.51",
            "versionStartIncluding": "450"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:nvidia:nvs:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C60D8825-B4F5-47DC-ACC3-137D6FC5F12F"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "23A7C53F-B80F-4E6A-AFA9-58EEA84BE11D"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A31C8344-3E02-4EB8-8BD8-4C84B7959624"
          },
          {
            "criteria": "cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "902B8056-9E37-443B-8905-8AA93E2447FB"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References