NVD

Id
21819  
Name
CVE-2016-7389  
Description
For the NVIDIA Quadro, NVS, GeForce, and Tesla products, NVIDIA GPU Display Driver on Linux R304 before 304.132, R340 before 340.98, R367 before 367.55, R361_93 before 361.93.03, and R370 before 370.28 contains a vulnerability in the kernel mode layer (nvidia.ko) handler for mmap() where improper input validation may allow users to gain access to arbitrary physical memory, leading to an escalation of privileges.  
Reject
 
CVSS Version
2  
CVSS Score
7.2  
Severity
High  
CVSS Base Score
7.2  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:L/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2016-11-08  
Modified Date
2016-11-28  
Seq
2016-7389  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
117018 21819 CVE-2016-7389 http://nvidia.custhelp.com/app/answers/detail/a_id/4246  View
117019 21819 CVE-2016-7389 94177  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
5002 JVNDB-2016-005775 Linux 上で稼動する複数の NVIDIA 製品の GPU ディスプレイドライバにおけるアクセス権を取得される脆弱性 Linux 上で稼動する NVIDIA Quadro、NVS、GeForce、および Tesla の GPU ディスプレイドライバには、任意の物理メモリへのアクセス権を取得され、その結果、権限昇格の脆弱性が存在します。 CVE-2016-7389 93896 CVE-2016-7389 21819 7.2 7.8 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-005775.html 2016-10-19 2016-11-10 View