CVE-2012-0952 MEDIUM

CVE-2012-0952: Heap overflow in control device ioctl

Vendor Nvidia
Product graphics drivers
Weakness CWE-119
Published May 8, 2020
Last update September 16, 2024

CVSS base score

5.0/10
Attack vector Local
Attack complexity High
Privileges required High
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L

What the vulnerability does

01Description

A heap buffer overflow was discovered in the device control ioctl in the Linux driver for Nvidia graphics cards, which may allow an attacker to overflow 49 bytes. This issue was fixed in version 295.53.

Key dates

02Disclosure timeline

May 8, 2020 CVE published
September 16, 2024 Record updated