CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-8807

For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x10000e9 where a value is passed from an user to the driver is used without validation as the size input to memcpy() causing a stack buffer overflow, leading to denial of service or potential escalation of privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.4%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

Products affected by CVE-2016-8807

Nvidia » Gpu Driver » Version: 340

cpe:2.3:a:nvidia:gpu_driver:340
Nvidia » Gpu Driver » Version: 340.52

cpe:2.3:a:nvidia:gpu_driver:340.52
Nvidia » Gpu Driver » Version: 340.65

cpe:2.3:a:nvidia:gpu_driver:340.65
Nvidia » Gpu Driver » Version: 340.76

cpe:2.3:a:nvidia:gpu_driver:340.76
Nvidia » Gpu Driver » Version: 340.96

cpe:2.3:a:nvidia:gpu_driver:340.96
Nvidia » Gpu Driver » Version: 340.98

cpe:2.3:a:nvidia:gpu_driver:340.98
Nvidia » Gpu Driver » Version: 341.92

cpe:2.3:a:nvidia:gpu_driver:341.92
Nvidia » Gpu Driver » Version: 341.96

cpe:2.3:a:nvidia:gpu_driver:341.96
Nvidia » Gpu Driver » Version: 341.98

cpe:2.3:a:nvidia:gpu_driver:341.98
Nvidia » Gpu Driver » Version: 375

cpe:2.3:a:nvidia:gpu_driver:375
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-
Microsoft » Windows » Version: 1.0

cpe:2.3:o:microsoft:windows:1.0
Microsoft » Windows » Version: 2.0

cpe:2.3:o:microsoft:windows:2.0
Microsoft » Windows » Version: 2000

cpe:2.3:o:microsoft:windows:2000
Microsoft » Windows » Version: 3.0

cpe:2.3:o:microsoft:windows:3.0
Microsoft » Windows » Version: 3.1

cpe:2.3:o:microsoft:windows:3.1
Microsoft » Windows » Version: 3.11

cpe:2.3:o:microsoft:windows:3.11
Microsoft » Windows » Version: server_2008

cpe:2.3:o:microsoft:windows:server_2008
Microsoft » Windows » Version: vista

cpe:2.3:o:microsoft:windows:vista

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-8807

Products

Pricing

Contact Us