CVE-2012-4225

EUVD-2012-4169
NVIDIA UNIX graphics driver before 295.71 and before 304.32 allows local users to write to arbitrary physical memory locations and gain privileges by modifying the VGA window using /dev/nvidia0.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.2 UNKNOWN
LOCAL
LOW
AV:L/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 14%
Affected Products (NVD)
VendorProductVersion
nvidiaunix_graphic_driver
𝑥
≤ 295.71
nvidiaunix_graphic_driver
𝑥
≤ 304.32
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
nvidia-graphics-drivers
bookworm/non-free-firmware
535.183.01-1~deb12u1
fixed
bullseye/non-free
470.256.02-2
fixed
sid/non-free-firmware
535.183.06-2
fixed
squeeze
no-dsa
trixie/non-free-firmware
535.183.06-2
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
nvidia-graphics-drivers
hardy
dne
lucid
Fixed 195.36.24-0ubuntu1~10.04.3
released
natty
Fixed 270.41.06-0ubuntu1.2
released
oneiric
Fixed 280.13-0ubuntu6.2
released
precise
Fixed 295.40-0ubuntu1.1
released
nvidia-graphics-drivers-updates
hardy
dne
lucid
dne
natty
dne
oneiric
Fixed 295.20-0ubuntu0.4
released
precise
Fixed 295.49-0ubuntu0.2
released
Common Weakness Enumeration
References
http://nvidia.custhelp.com/app/answers/detail/a_id/3140
http://seclists.org/fulldisclosure/2012/Aug/4
http://seclists.org/fulldisclosure/2012/Aug/76
http://security.gentoo.org/glsa/glsa-201304-01.xml
http://www.openwall.com/lists/oss-security/2012/08/01/1
http://www.openwall.com/lists/oss-security/2012/08/08/4
http://nvidia.custhelp.com/app/answers/detail/a_id/3140
http://seclists.org/fulldisclosure/2012/Aug/4
http://seclists.org/fulldisclosure/2012/Aug/76
http://security.gentoo.org/glsa/glsa-201304-01.xml
http://www.openwall.com/lists/oss-security/2012/08/01/1
http://www.openwall.com/lists/oss-security/2012/08/08/4