CVE-2021-1054
First published: Fri Jan 08 2021(Updated: )
NVIDIA GPU Display Driver for Windows, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the software does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action, which may lead to denial of service.
Credit: psirt@nvidia.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nvidia Gpu Driver | >=390<392.63 | |
| Nvidia Gpu Driver | >=418<427.11 | |
| Nvidia Gpu Driver | >=450<452.77 | |
| Nvidia Gpu Driver | >=460<461.09 | |
| Microsoft Windows |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-1054?
CVE-2021-1054 is a vulnerability in the NVIDIA GPU Display Driver for Windows that allows unauthorized access to resources or actions.
Which versions of the NVIDIA GPU Display Driver for Windows are affected by CVE-2021-1054?
Versions between 390 and 392.63, between 418 and 427.11, between 450 and 452.77, and between 460 and 461.09 of the NVIDIA GPU Display Driver for Windows are affected by CVE-2021-1054.
What is the severity of CVE-2021-1054?
CVE-2021-1054 has a severity rating of 5.5 (Medium).
How can I fix CVE-2021-1054?
To fix CVE-2021-1054, update to a version of the NVIDIA GPU Display Driver for Windows that is not affected by the vulnerability.
Where can I find more information about CVE-2021-1054?
You can find more information about CVE-2021-1054 at this link: https://nvidia.custhelp.com/app/answers/detail/a_id/5142
- collector/nvd-index
- agent/references
- agent/weakness
- agent/type
- agent/event
- vendor/nvidia
- canonical/nvidia gpu driver
- version/nvidia gpu driver/390
- version/nvidia gpu driver/418
- version/nvidia gpu driver/450
- version/nvidia gpu driver/460
- vendor/microsoft
- canonical/microsoft windows