NVIDIA CVEs GPU Sept 2020

NVIDIA CVEs GPU Sept 2020

2020/5xxx/CVE-2020-5979.json

@@ -1,18 +1,62 @@
 {
-    "data_type": "CVE",
-    "data_format": "MITRE",
-    "data_version": "4.0",
-    "CVE_data_meta": {
-        "ID": "CVE-2020-5979",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
-    },
-    "description": {
-        "description_data": [
-            {
-                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
-            }
-        ]
-    }
-}
+	"data_type" : "CVE",
+	"data_format" : "MITRE",
+	"data_version" : "4.0",
+	"CVE_data_meta" : {
+		"ID" : "CVE-2020-5979",
+		"ASSIGNER" : "psirt@nvidia.com",
+		"STATE" : "PUBLIC"
+	},
+	"affects" : {
+		"vendor" : {
+			"vendor_data" : [
+				{
+					"vendor_name" : "NVIDIA",
+					"product" : {
+						"product_data" : [
+							{
+								"product_name" : "NVIDIA GPU Display Driver",
+								"version" : {
+									"version_data" : [
+										{
+											"version_value" : "All"
+										}
+									]
+								}
+							}
+						]
+					}
+				}
+			]
+		}
+	},
+	"problemtype" : {
+		"problemtype_data" : [
+			{
+				"description" : [
+					{
+						"lang" : "eng",
+						"value" : "escalation of privileges"
+					}
+				]
+			}
+		]
+	},
+	"references" : {
+		"reference_data" : [
+			{
+				"refsource" : "CONFIRM",
+				"name" : "https://nvidia.custhelp.com/app/answers/detail/a_id/5075",
+				"url" : "https://nvidia.custhelp.com/app/answers/detail/a_id/5075"
+			}
+		]
+	},
+	"description" : {
+		"description_data" : [
+			{
+				"lang" : "eng",
+				"value" : "NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the NVIDIA Control Panel component in which a user is presented with a dialog box for input by a high-privilege process, which may lead to escalation of privileges."
+			}
+		]
+	}
+}

2020/5xxx/CVE-2020-5980.json

@@ -1,18 +1,62 @@
 {
-    "data_type": "CVE",
-    "data_format": "MITRE",
-    "data_version": "4.0",
-    "CVE_data_meta": {
-        "ID": "CVE-2020-5980",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
-    },
-    "description": {
-        "description_data": [
-            {
-                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
-            }
-        ]
-    }
-}
+	"data_type" : "CVE",
+	"data_format" : "MITRE",
+	"data_version" : "4.0",
+	"CVE_data_meta" : {
+		"ID" : "CVE-2020-5980",
+		"ASSIGNER" : "psirt@nvidia.com",
+		"STATE" : "PUBLIC"
+	},
+	"affects" : {
+		"vendor" : {
+			"vendor_data" : [
+				{
+					"vendor_name" : "NVIDIA",
+					"product" : {
+						"product_data" : [
+							{
+								"product_name" : "NVIDIA GPU Display Driver",
+								"version" : {
+									"version_data" : [
+										{
+											"version_value" : "All"
+										}
+									]
+								}
+							}
+						]
+					}
+				}
+			]
+		}
+	},
+	"problemtype" : {
+		"problemtype_data" : [
+			{
+				"description" : [
+					{
+						"lang" : "eng",
+						"value" : "denial of service or code execution"
+					}
+				]
+			}
+		]
+	},
+	"references" : {
+		"reference_data" : [
+			{
+				"refsource" : "CONFIRM",
+				"name" : "https://nvidia.custhelp.com/app/answers/detail/a_id/5075",
+				"url" : "https://nvidia.custhelp.com/app/answers/detail/a_id/5075"
+			}
+		]
+	},
+	"description" : {
+		"description_data" : [
+			{
+				"lang" : "eng",
+				"value" : "NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in multiple components in which a securely loaded system DLL will load its dependencies in an insecure fashion, which may lead to code execution or denial of service."
+			}
+		]
+	}
+}

2020/5xxx/CVE-2020-5981.json

@@ -1,18 +1,62 @@
 {
-    "data_type": "CVE",
-    "data_format": "MITRE",
-    "data_version": "4.0",
-    "CVE_data_meta": {
-        "ID": "CVE-2020-5981",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
-    },
-    "description": {
-        "description_data": [
-            {
-                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
-            }
-        ]
-    }
-}
+	"data_type" : "CVE",
+	"data_format" : "MITRE",
+	"data_version" : "4.0",
+	"CVE_data_meta" : {
+		"ID" : "CVE-2020-5981",
+		"ASSIGNER" : "psirt@nvidia.com",
+		"STATE" : "PUBLIC"
+	},
+	"affects" : {
+		"vendor" : {
+			"vendor_data" : [
+				{
+					"vendor_name" : "NVIDIA",
+					"product" : {
+						"product_data" : [
+							{
+								"product_name" : "NVIDIA GPU Display Driver",
+								"version" : {
+									"version_data" : [
+										{
+											"version_value" : "All"
+										}
+									]
+								}
+							}
+						]
+					}
+				}
+			]
+		}
+	},
+	"problemtype" : {
+		"problemtype_data" : [
+			{
+				"description" : [
+					{
+						"lang" : "eng",
+						"value" : "code execution or denial of service"
+					}
+				]
+			}
+		]
+	},
+	"references" : {
+		"reference_data" : [
+			{
+				"refsource" : "CONFIRM",
+				"name" : "https://nvidia.custhelp.com/app/answers/detail/a_id/5075",
+				"url" : "https://nvidia.custhelp.com/app/answers/detail/a_id/5075"
+			}
+		]
+	},
+	"description" : {
+		"description_data" : [
+			{
+				"lang" : "eng",
+				"value" : "NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the DirectX11 user mode driver (nvwgf2um/x.dll), in which a specially crafted shader can cause an out of bounds access, which may lead to denial of service or code execution."
+			}
+		]
+	}
+}

2020/5xxx/CVE-2020-5982.json

@@ -1,18 +1,62 @@
 {
-    "data_type": "CVE",
-    "data_format": "MITRE",
-    "data_version": "4.0",
-    "CVE_data_meta": {
-        "ID": "CVE-2020-5982",
-        "ASSIGNER": "cve@mitre.org",
-        "STATE": "RESERVED"
-    },
-    "description": {
-        "description_data": [
-            {
-                "lang": "eng",
-                "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided."
-            }
-        ]
-    }
-}
+	"data_type" : "CVE",
+	"data_format" : "MITRE",
+	"data_version" : "4.0",
+	"CVE_data_meta" : {
+		"ID" : "CVE-2020-5982",
+		"ASSIGNER" : "psirt@nvidia.com",
+		"STATE" : "PUBLIC"
+	},
+	"affects" : {
+		"vendor" : {
+			"vendor_data" : [
+				{
+					"vendor_name" : "NVIDIA",
+					"product" : {
+						"product_data" : [
+							{
+								"product_name" : "NVIDIA GPU Display Driver",
+								"version" : {
+									"version_data" : [
+										{
+											"version_value" : "All"
+										}
+									]
+								}
+							}
+						]
+					}
+				}
+			]
+		}
+	},
+	"problemtype" : {
+		"problemtype_data" : [
+			{
+				"description" : [
+					{
+						"lang" : "eng",
+						"value" : "denial of service"
+					}
+				]
+			}
+		]
+	},
+	"references" : {
+		"reference_data" : [
+			{
+				"refsource" : "CONFIRM",
+				"name" : "https://nvidia.custhelp.com/app/answers/detail/a_id/5075",
+				"url" : "https://nvidia.custhelp.com/app/answers/detail/a_id/5075"
+			}
+		]
+	},
+	"description" : {
+		"description_data" : [
+			{
+				"lang" : "eng",
+				"value" : "NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) scheduler, in which the software does not properly limit the number or frequency of interactions that it has with an actor, such as the number of incoming requests, which may lead to denial of service."
+			}
+		]
+	}
+}