CVE-2026-24197

MEDIUM EPSS 5.5%

Published May 26, 20261mo ago · Modified Jun 17, 20261w ago

6.5 CVSS 3.1

Medium

Published May 26, 2026 1mo ago

Last Modified Jun 17, 2026 1w ago

Description

NVIDIA Display Driver for Linux contains a vulnerability in the Multi-Instance GPU (MIG) partition management, where an insecure default initialization of memory subsystem routing resources could lead to data corruption or a hang during partition reconfiguration. A successful exploit of this vulnerability might lead to denial of service.

CVSS Details

Base Score

6.5

Exploitability

2.0

Impact

4.0

Vector string

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Attack Vector Local

Attack Complexity Low

Privileges Required Low

User Interaction None

Scope Changed

Confidentiality None

Integrity None

Availability High

Threat Intelligence

EPSS Exploit Probability

5.5% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-1188

Affected Products 6

Vendor	Product	Version	Range
nvidia	gpu_display_driver	*	≥535 – <535.309.01
nvidia	gpu_display_driver	*	≥535 – <539.72
nvidia	gpu_display_driver	*	≥580 – <580.159.03
nvidia	gpu_display_driver	*	≥580 – <582.53
nvidia	gpu_display_driver	*	≥595 – <595.36
nvidia	gpu_display_driver	*	≥595 – <595.71.05

References 3

nvd.nist.gov https://nvd.nist.gov/vuln/detail/CVE-2026-24197

Third Party Advisory
nvidia.custhelp.com https://nvidia.custhelp.com/app/answers/detail/a_id/5821

Vendor Advisory
cve.org https://www.cve.org/CVERecord?id=CVE-2026-24197

Third Party Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.