CVE-2013-5987

HIGH

Description

Unspecified vulnerability in NVIDIA graphics driver Release 331, 325, 319, 310, and 304 allows local users to bypass intended access restrictions for the GPU and gain privileges via unknown vectors.

References

http://marc.info/?l=bugtraq&m=139965942001604&w=2

http://nvidia.custhelp.com/app/answers/detail/a_id/3377

http://support.apple.com/kb/HT6150

Details

Source: MITRE

Published: 2014-01-21

Updated: 2016-08-23

Risk Information

CVSS v2.0

Base Score: 7.2

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Impact Score: 10

Exploitability Score: 3.9

Severity: HIGH

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:nvidia:gpu_driver:304.00:-:*:*:unix:*:*:*

cpe:2.3:a:nvidia:gpu_driver:304.00:-:*:*:windows:*:*:*

cpe:2.3:a:nvidia:gpu_driver:310.00:-:*:*:windows:*:*:*

cpe:2.3:a:nvidia:gpu_driver:319.00:-:*:*:unix:*:*:*

cpe:2.3:a:nvidia:gpu_driver:319.00:-:*:*:windows:*:*:*

cpe:2.3:a:nvidia:gpu_driver:325.00:-:*:*:windows:*:*:*

cpe:2.3:a:nvidia:gpu_driver:331.00:-:*:*:unix:*:*:*

cpe:2.3:a:nvidia:gpu_driver:331.00:-:*:*:windows:*:*:*

Configuration 2

OR

cpe:2.3:o:apple:mac_os_x:10.9.1:*:*:*:*:*:*:*

Tenable Plugins

View all (6 total)

IDNameProductFamilySeverity
8138Mac OS X < 10.9.2 Multiple Vulnerabilities Nessus Network MonitorWeb Clients
critical
72688Mac OS X Multiple Vulnerabilities (Security Update 2014-001) (BEAST)NessusMacOS X Local Security Checks
critical
72687Mac OS X 10.9.x < 10.9.2 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
72484NVIDIA Graphics Driver Unspecified Privilege Escalation (Unix / Linux)NessusMisc.
high
72483NVIDIA Graphics Driver Unspecified Privilege Escalation (Windows)NessusWindows
high
72255GLSA-201402-02 : NVIDIA Drivers: Privilege EscalationNessusGentoo Local Security Checks
critical