Skip to main content

An Nvidia vulnerability has been found. It’s time to update your drivers

Nvidia RTX 2060 Super and RTX 2070 Super review
Dan Baker/Digital Trends

Just this month, Nvidia posted a security bulletin on its site alerting consumers that GPUs in its GeForce, Quadro, and Tesla product lines were all affected by serious vulnerabilities. The vulnerabilities range in severity, but get as dangerous as local code execution and privilege escalation, and can be found in all versions of numerous driver tracks that the company provides for its hardware.

Notably, this includes the R430 line that powers the GeForce GPUs. While Nvidia has since issued new patched versions of all of its GeForce and many of its Quadro drivers, patches for some of its Quadro and Tesla drivers have not been released, and in some cases won’t be ready for two weeks.

The revelation of these substantial security flaws comes at an exceptionally awkward time for the GPU manufacturer, as it has just released its GeForce RTX Super line of graphics cards to capitalize on the post-E3 gaming excitement. Considering that concern for local privilege escalation vulnerabilities is often taken less seriously than more menacing remote code execution vulnerabilities due to the comparatively limited attack vector, gamers may not think to download and install a patch to their freshly purchased RTX Super GPU.

These security holes also coincide with a recent disappointing showing against AMD. After AMD successfully tricked Nvidia into sabotaging its own RTX Super release with a less-than-competitive price point, marketing gleaming new GPUs with high-severity vulnerabilities right out of the gate surely feels like getting salt in its wound.

One saving grace for Nvidia is that some hardware manufacturers may bundle the driver update as part of larger system updates, but users should definitely not count on this.

As things currently stand, a local code execution bug combined with a privilege execution bug can leave unpatched devices open to physical attacks in which a malicious actor gains physical access to a device to give themselves administrator privileges and run arbitrary code. This kind of attack is not out of the question, as many of the devices containing vulnerable Nvidia graphics cards are used by creatives who may or may not have robust security models, or may be using publicly accessible devices like those in libraries or gaming lounges. Regardless, any consumer with affected hardware should download and run the patch installers Nvidia has provided (or will soon provide, for those that are not yet available) as soon as possible.

Editors' Recommendations

Jonathan Terrasi
Jonathan has studiously followed trends in technology, particularly in information security and digital privacy, since 2014…
Nvidia may finally admit its major mistake with the RTX 4080
Nvidia GeForce RTX 4080 lays on a pink surface.

Nvidia's latest GPU, the RTX 4080, has not been the smash-hit Nvidia may have been hoping for. Unsurprisingly, Nvidia may be eager to change that.

According to a new report, Nvidia may be on the cusp of giving the RTX 4080 a much-needed price adjustment. Will that help it compete against the more reasonably priced AMD Radeon RX 7900 XTX?

Read more
Nvidia may be shooting itself in the foot with its new monster GPU
Nvidia's RTX 6000 graphics card.

Nvidia has only just launched the RTX 4090 and the RTX 4080, but there's another GPU that's just starting to appear for sale -- the RTX 6000.

The card is not only more powerful than the flagship RTX 4090, but it also has a hefty $9,999 price tag. What is the RTX 6000, exactly, and what does it mean for Nvidia's next-gen cards? Here's what we know.

Read more
Nvidia may be killing some of its most popular GPUs
Nvidia RTX 2060 Super and RTX 2070 Super review

The Nvidia GeForce RTX 2060 and GTX 1660 lines may no longer be in production. Nvidia could be ending production of its two most popular graphics cards, according to WCCFTech and sources in the Asia Pacific manufacturing industry.

This comes as a bit of a shock, considering both of these cards are among the most popular GPUs in the world. According to a Steam hardware survey from this past October, the GeForce RTX 2060 is the second most-used card in the world, with a 6% market share (the GTX 1060 is number one). The GTX 1660 is the eighth most popular, with a nearly 3% share.

Read more