Vulnerability Details CVE-2021-1074
NVIDIA GPU Display Driver for Windows installer contains a vulnerability where an attacker with local unprivileged system access may be able to replace an application resource with malicious files. This attack requires a user with system administration rights to execute the installer and requires the attacker to replace the files in a very short time window between file integrity validation and execution. Such an attack may lead to code execution, escalation of privileges, denial of service, and information disclosure.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 30.2%
CVSS Severity
CVSS v3 Score 7.3
CVSS v2 Score 6.9
References
Products affected by CVE-2021-1074
-
cpe:2.3:a:nvidia:gpu_display_driver:390
-
cpe:2.3:a:nvidia:gpu_display_driver:390.65
-
cpe:2.3:a:nvidia:gpu_display_driver:390.77
-
cpe:2.3:a:nvidia:gpu_display_driver:391.03
-
cpe:2.3:a:nvidia:gpu_display_driver:391.33
-
cpe:2.3:a:nvidia:gpu_display_driver:391.58
-
cpe:2.3:a:nvidia:gpu_display_driver:391.74
-
cpe:2.3:a:nvidia:gpu_display_driver:391.89
-
cpe:2.3:a:nvidia:gpu_display_driver:392.00
-
cpe:2.3:a:nvidia:gpu_display_driver:392.37
-
cpe:2.3:a:nvidia:gpu_display_driver:392.53
-
cpe:2.3:a:nvidia:gpu_display_driver:392.56
-
cpe:2.3:a:nvidia:gpu_display_driver:392.58
-
cpe:2.3:a:nvidia:gpu_display_driver:392.59
-
cpe:2.3:a:nvidia:gpu_display_driver:392.61
-
cpe:2.3:a:nvidia:gpu_display_driver:392.62
-
cpe:2.3:a:nvidia:gpu_display_driver:392.63