← back
CVE-2016-8806

CVE-2016-8806

EPSS 1.6%
For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgDdiEscape ID 0x5000027 where a pointer passed from an user to the driver is used without validation, leading to denial of service or potential escalation of privileges.
Affected products
n/a · Quadro, NVS, and GeForce (all versions)
public PoCs found2
cve_referencewww.exploit-db.com/exploits/40663/unverifiedexploitdbwww.exploit-db.com/exploits/40663unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://nvidia.custhelp.com/app/answers/detail/a_id/4247https://support.lenovo.com/us/en/solutions/LEN-10822https://www.exploit-db.com/exploits/40663/http://www.securityfocus.com/bid/93990