HIGH Patch AvailableCVE-2024-0085

Privilege Escalation via Out-of-Bounds Write in NVIDIA CUDA Kernel Mode Driver

Discovered 10 August 2025 9 views

Overview

A high-severity vulnerability was discovered in the NVIDIA GPU display driver for both Windows and Linux, impacting the kernel mode driver component responsible for managing CUDA workloads. The vulnerability, identified as an out-of-bounds write, can be triggered by a specially crafted shader or CUDA kernel submitted by a low-privilege user-mode application. When the kernel mode driver processes this malicious request, it attempts to write data to a memory location outside of the intended buffer's boundaries. This can corrupt adjacent kernel memory structures. A successful exploit allows an attacker with local, unprivileged access to a system to execute arbitrary code with kernel-level (SYSTEM or root) privileges. This poses a significant risk to multi-tenant AI/ML infrastructure, such as shared training servers or cloud-based GPU instances, where multiple users run code on the same physical hardware. An attacker could exploit this vulnerability to escape their containerized environment, gain control of the host machine, access or tamper with other users' data and models, or cause a complete denial of service by crashing the system. The flaw underscores the critical importance of securing the hardware and driver stack that underpins nearly all modern AI computation.

Affected Systems

NVIDIA GPU Display Driver for Windows < 551.23NVIDIA GPU Display Driver for Linux < 550.54.14NVIDIA RTX/Quadro Driver < R550

Testing Guide

1. **Check Driver Version:** On Windows, open the NVIDIA Control Panel and go to 'System Information'. On Linux, run the command `nvidia-smi`. 2. **Compare with Patched Versions:** Cross-reference the installed driver version with the versions listed in the 'Affected Systems' section or the official NVIDIA security bulletin. If your version is lower than the patched version for your branch, you are vulnerable. 3. **Use a Vulnerability Scanner:** Employ a commercial or open-source vulnerability scanner that includes checks for NVIDIA driver vulnerabilities to automate this process across your fleet.

Mitigation Steps

1. **Update NVIDIA Drivers:** Immediately update all affected systems to the latest driver versions as specified in the NVIDIA security bulletin. 2. **Restrict GPU Access:** In multi-tenant environments, use mechanisms like Kubernetes device plugins and security policies to limit which users and pods can access GPU resources. 3. **Monitor System Logs:** Monitor for unexpected kernel-level crashes or errors (e.g., blue screens on Windows, kernel panics on Linux) on GPU-enabled systems, as these could be signs of failed exploitation attempts. 4. **Regularly Scan for Vulnerabilities:** Incorporate driver and firmware versions into your regular infrastructure vulnerability scanning program.

Patch Details

Patched in NVIDIA driver versions 551.23 (Windows), 550.54.14 (Linux), and subsequent releases. See NVIDIA Security Bulletin 5525.

Sources

https://nvidia.custhelp.com/app/answers/detail/a_id/5525

← Back to vulnerabilities