Get the Latest Nvidia Drivers to Block These High-Risk Errors
Windows users with Nvidia graphics cards should update their display drivers immediately to fix several problematic (and potentially crashing) errors. A recent Nvidia security bulletin describes thirteen major vulnerabilities; five of them affect Nvidia display drivers and eight are in Nvidia vGPU software. While all thirteen are serious threats, the five display driver errors pose the greatest risk to casual users as they affect all Windows and Linux PCs with an Nvidia GPU.
- CVE-2021-1074 : CVSS rating of 7.5. Allows local attackers with physical access to your computer to manipulate the Nvidia installer. An attack could exploit this vulnerability to run malicious code, steal your data, or perform a denial of service attack.
- CVE-2021-1075 : CVSS rating 7.3. A memory issue in the Nvidia display driver for Windows that leaves your PC vulnerable to various malware and remote access attacks.
- CVE-2021-1076 : CVSS rating 6.6. An issue in Windows and Linux drivers that could allow hackers to access, steal and / or damage your computer’s data and perform denial of service attacks.
- CVE-2021-1077 : CVSS rating 6.6. Another driver issue for both Windows and Linux that can be used to launch denial of service attacks.
- CVE-2021-1078 : CVSS rating 5.5. A problem in Windows drivers that could cause sudden PC crashes.
Nvidia released an emergency patch last week to fix these vulnerabilities. You can download the updated drivers via the GeForce Experience app, or simply get the installer from the Nvidia downloads page .
As for the eight vGPU bugs, four are of high severity, with a CVSS rating of 7.8, and the rest range from 5.1 to 7.5 CVSS threat levels. They allow for several possible outcomes such as privilege escalation attacks, arbitrary code execution, information disclosure, data tampering, denial of service attacks, memory corruption, and more. These are serious threats, too, but only affect those who license Nvidia’s vGPU software.
[ TechRadar ]