CVE-2026-24192 | THREATINT

Description

NVIDIA Display Driver for Linux contains a vulnerability where an attacker could cause an incorrect conversion between numeric types, leading to a heap buffer overflow. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information disclosure, data tampering, and code execution.

PUBLISHED Reserved 2026-01-21 | Published 2026-05-26 | Updated 2026-05-27 | Assigner nvidia

HIGH: 7.8CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Problem types

CWE-681 Incorrect Conversion between Numeric Types

Product status

Default status

unaffected

All driver versions prior to 595.71.05

affected

Default status

unaffected

All driver versions prior to 580.159.03

affected

Default status

unaffected

All driver versions prior to 535.309.01

affected

Default status

unaffected

All driver versions prior to 595.71.05

affected

Default status

unaffected

All driver versions prior to 580.159.03

affected

Default status

unaffected

All driver versions prior to 535.309.01

affected

Default status

unaffected

All driver versions prior to 595.71.05

affected

Default status

unaffected

All driver versions prior to 580.159.03

affected

Default status

unaffected

All driver versions prior to 535.309.01

affected

Default status

unaffected

595.58.02(All versions up to and including the March 2026 release)

affected

Default status

unaffected

595.58.02(All versions prior to and including vGPU 20.0)

affected

Default status

unaffected

580.126.08(All versions prior to and including vGPU 19.4)

affected

Default status

unaffected

535.288.01(All versions prior to and including vGPU 16.13)

affected

References

nvd.nist.gov/vuln/detail/CVE-2026-24192

www.cve.org/CVERecord?id=CVE-2026-24192

nvidia.custhelp.com/app/answers/detail/a_id/5821

cve.org (CVE-2026-24192)

nvd.nist.gov (CVE-2026-24192)

Download JSON