NVIDIA Geforce
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in NVIDIA Geforce.
By the Year
In 2026 there have been 17 vulnerabilities in NVIDIA Geforce with an average score of 7.0 out of ten. Last year, in 2025 Geforce had 8 security vulnerabilities published. That is, 9 more vulnerabilities have already been reported in 2026 as compared to last year. However, the average CVE base score of the vulnerabilities in 2026 is greater by 0.72.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 17 | 7.02 |
| 2025 | 8 | 6.30 |
| 2024 | 1 | 7.80 |
It may take a day or so for new Geforce vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent NVIDIA Geforce Security Vulnerabilities
NVIDIA Display Driver Kernel Permission Flaw (CVE-2025-33221)
CVE-2025-33221
4.4 - Medium
- May 26, 2026
NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel driver, where a user could cause an incorrect permission assignment for a critical resource. A successful exploit of this vulnerability might lead to data tampering and denial of service.
Improper Input Validation
Privilege Escalation via Improper Permission in NVIDIA Display Driver (Linux)
CVE-2026-24194
7.8 - High
- May 26, 2026
NVIDIA Display Driver for Linux contains a vulnerability in a kernel mode layer handler, where a user could cause improper permission handling. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.
Improper Preservation of Permissions
NVIDIA Display Driver Windows TOCTOU Vulnerability (PrivEsc/DoS)
CVE-2026-24191
7.8 - High
- May 26, 2026
NVIDIA Display Driver for Windows contains a vulnerability where an attacker could cause a time-of-check time-of-use issue. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.
TOCTTOU
GPU Resource Leak in NVIDIA Display Driver Kernel Mode Layer
CVE-2026-24190
7.8 - High
- May 26, 2026
NVIDIA Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a user could cause improper access to GPU resources. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.
AuthZ
NVIDIA Display Driver OOB Write Enables PrivEsc & Code Exec
CVE-2026-24193
7.8 - High
- May 26, 2026
NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker could cause an out-of-bounds write. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.
Memory Corruption
NVIDIA Display Driver for Linux OOB Read/DoS
CVE-2026-24196
7.1 - High
- May 26, 2026
NVIDIA Display Driver for Linux contains a vulnerability where a user could cause an out-of-bounds read. A successful exploit of this vulnerability might lead to denial of service and information disclosure.
Out-of-bounds Read
NVIDIA Display Driver Linux MIG Init Memory Corruption DoS
CVE-2026-24197
6.5 - Medium
- May 26, 2026
NVIDIA Display Driver for Linux contains a vulnerability in the Multi-Instance GPU (MIG) partition management, where an insecure default initialization of memory subsystem routing resources could lead to data corruption or a hang during partition reconfiguration. A successful exploit of this vulnerability might lead to denial of service.
Insecure Default Initialization of Resource
NVIDIA Display Driver Linux Kernel Module Race Condition DoS
CVE-2026-24199
4.7 - Medium
- May 26, 2026
NVIDIA Display Driver for Linux contains a vulnerability in a kernel module, where a user could cause a race condition by reordering compiler or processor memory instructions. A successful exploit of this vulnerability might lead to denial of service.
Race Condition
NVIDIA GPU Display Driver Race Condition Memory Leak (CVE-2026-24198)
CVE-2026-24198
5.6 - Medium
- May 26, 2026
NVIDIA GPU Display Driver for Linux contains a vulnerability where an advanced attacker could use a race condition to leak sensitive memory, which might cause limited exposure of sensitive information to an unauthorized actor. A successful exploit of this vulnerability might lead to denial of service, data tampering, and information disclosure.
Information Disclosure
NVIDIA Display Driver Lock Leak Enables DoS
CVE-2026-24182
6.5 - Medium
- May 26, 2026
NVIDIA Display Driver for Windows and Linux contains a vulnerability where an attacker could leak held driver locks. A successful exploit of this vulnerability might lead to denial of service.
Improper Locking
Heap Buffer Overflow via Numeric Type Conversion in NVIDIA Linux Display Driver
CVE-2026-24192
7.8 - High
- May 26, 2026
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause an incorrect conversion between numeric types, leading to a heap buffer overflow. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.
Incorrect Conversion between Numeric Types
UAF in NVIDIA Linux Display Driver Enables Privilege Escalation
CVE-2026-24187
8.8 - High
- May 26, 2026
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.
Dangling pointer
NVIDIA HD Audio Driver for Windows: NULL Pointer Deref That Causes DoS
CVE-2025-33237
5.5 - Medium
- January 28, 2026
NVIDIA HD Audio Driver for Windows contains a vulnerability where an attacker could exploit a NULL pointer dereference issue. A successful exploit of this vulnerability might lead to a denial of service.
NULL Pointer Dereference
CVE-2025-33220: Heap Use-After-Free in NVIDIA Virtual GPU Manager
CVE-2025-33220
7.8 - High
- January 28, 2026
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause heap memory access after the memory is freed. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or information disclosure.
Dangling pointer
NVIDIA Display Driver Kernel Module Integer Overflow
CVE-2025-33219
7.8 - High
- January 28, 2026
NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or information disclosure.
Integer Overflow or Wraparound
Int Overflow in NVIDIA GPU Display Driver nvlddmkm.sys
CVE-2025-33218
7.8 - High
- January 28, 2026
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys), where an attacker could cause an integer overflow. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or information disclosure.
Integer Overflow or Wraparound
UAF Vulnerability in NVIDIA Display Driver for Windows
CVE-2025-33217
7.8 - High
- January 28, 2026
NVIDIA Display Driver for Windows contains a vulnerability where an attacker could trigger a use after free. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, and information disclosure.
Dangling pointer
NVIDIA Project G-Assist Privilege Escalation & DoS Potential
CVE-2025-23347
7.8 - High
- October 23, 2025
NVIDIA Project G-Assist contains a vulnerability where an attacker might be able to escalate permissions. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, and information disclosure.
Incorrect Default Permissions
OOB Read in NVIDIA Display Driver Video Decoder
CVE-2025-23345
4.4 - Medium
- October 23, 2025
NVIDIA Display Driver for Windows and Linux contains a vulnerability in a video decoder, where an attacker might cause an out-of-bounds read. A successful exploit of this vulnerability might lead to information disclosure or denial of service.
Out-of-bounds Read
CVE-2025-23332: NVIDIA Linux Driver Kernel Mod Nullptr Deref DoS
CVE-2025-23332
5 - Medium
- October 23, 2025
NVIDIA Display Driver for Linux contains a vulnerability in a kernel module, where an attacker might be able to trigger a null pointer deference. A successful exploit of this vulnerability might lead to denial of service.
NULL Pointer Dereference
CVE-2025-23330: NVIDIA Display Driver Null Pointer Deref Denial of Service
CVE-2025-23330
5.5 - Medium
- October 23, 2025
NVIDIA Display Driver for Linux contains a vulnerability where an attacker might be able to trigger a null pointer dereference. A successful exploit of this vulnerability might lead to denial of service.
NULL Pointer Dereference
NVIDIA Linux Kernel Driver DoS via NPE
CVE-2025-23300
5.5 - Medium
- October 23, 2025
NVIDIA Display Driver for Linux contains a vulnerability in the kernel driver, where a user could cause a null pointer dereference by allocating a specific memory resource. A successful exploit of this vulnerability might lead to denial of service.
NULL Pointer Dereference
NVIDIA Linux Display Driver Race Condition PrivEsc
CVE-2025-23282
7 - High
- October 10, 2025
NVIDIA Display Driver for Linux contains a vulnerability where an attacker might be able to use a race condition to escalate privileges. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, and information disclosure.
Double-free
Use-After-Free in NVIDIA Display Driver (Linux) Enables Privilege Escalation
CVE-2025-23280
7 - High
- October 10, 2025
NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause a use-after-free. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, and information disclosure.
Dangling pointer
NVIDIA Display Driver Uncontrolled DLL Load: DoS, Escalation & Exec
CVE-2025-23309
8.2 - High
- October 10, 2025
NVIDIA Display Driver contains a vulnerability where an uncontrolled DLL loading path might lead to arbitrary denial of service, escalation of privileges, code execution, and data tampering.
DLL preloading
NVIDIA GPU Display Driver Windows OOB Write: Code Exec & Priv Esc
CVE-2024-0071
7.8 - High
- March 27, 2024
NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged regular user can cause an out-of-bounds write. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Out-of-bounds Read
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for NVIDIA Geforce or by NVIDIA? Click the Watch button to subscribe.
