NVIDIA Logo

NVIDIA Issues Critical Security Warning for GPU Drivers

Why You Need This Article

NVIDIA issued a stern security alert for users with NVIDIA GPUs, pointing out eight critical vulnerabilities in their GPU drivers. These defects, scored “High” in severity, are extremely dangerous:

  • Potential system control by attackers
  • Execution of malicious code
  • Exposure of sensitive data

The products affected include:

  • GeForce
  • RTX
  • Quadro
  • NVS
  • Tesla

Both Windows and Linux users are affected. One particularly concerning vulnerability, CVE‑2024‑0126, affects both operating systems and has a CVSS score of 7.8, emphasizing the urgent need for action.

On Windows, the ‘driver user mode layer’ suffers from out-of-bounds read vulnerabilities, and is a very high security risk, scoring 7.8 on a severity scale.

Operating SystemProductRecommended Version
WindowsGeForce566.03
LinuxGeForce565.57.01, 550.127.05, or 535.216.01
These updates can be downloaded through NVIDIA’s Manual Driver Search tool (Windows and Linux) or from the GeForce Experience app (Windows only), which will update automatically for some users.

Securing Your System: Immediate Action is Needed

To protect your system from these vulnerabilities, you need to regularly update your drivers. Follow these steps:

  1. For GeForce owners on Windows: Install version 566.03
  2. For Linux users: Choose an appropriate version from the following:
    1. 565.57.01
    2. 550.127.05
    3. 535.216.01

To locate the correct driver:

Manual driver search box

It is imperative to respond quickly so that your system can be shielded against exploits allowing unauthorized access, data loss and other security hazards. When you install these updates right away, you will better protect your system from current and future attackers.

The Greater Meaning and Value of Regular Updates

These holes in NVIDIA’s GeForce GPU drivers have a serious consequence: millions of people around the world might use them, as NVIDIA owns the vast majority of graphics cards. Especially when dealing with sensitive or important data, these vulnerabilities pose a direct threat that can be used for:

  • Code execution
  • Privilege escalation
  • Data manipulation

When we operate online, we are in a world where privacy and confidentiality matter. The potential of these flaws to compromise system integrity means we should act with extreme caution. Attackers might try to exploit these vulnerabilities in order to:

  • Bypass security measures
  • Access confidential information
  • Disrupt services
  • Utilize system resources for malicious functions.

Conclusion

Regular driver updates not only address known vulnerabilities, they also enhance the protection against emerging threats. Users can play a proactive role in safeguarding their digital lives by ensuring that security patches are applied and that systems are up to date.

As technologies evolve, updating these driver versions is an integral part of ensuring system integrity and privacy for personal and sensitive data.

Need help with your Puget Systems PC?

If something is wrong with your Puget Systems PC, we are readily accessible, and our support team comes from a wide range of technological backgrounds to better assist you!

Contact Puget Systems Support

Looking for more support guides?

If you are looking for a solution to a problem you are having with your PC, we also have a number of other support guides that may be able to assist you with other issues.

Puget Systems Online Help Guides