Skip to main content

An Nvidia vulnerability has been found. It’s time to update your drivers

Nvidia RTX 2060 Super and RTX 2070 Super review
Dan Baker/Digital Trends

Just this month, Nvidia posted a security bulletin on its site alerting consumers that GPUs in its GeForce, Quadro, and Tesla product lines were all affected by serious vulnerabilities. The vulnerabilities range in severity, but get as dangerous as local code execution and privilege escalation, and can be found in all versions of numerous driver tracks that the company provides for its hardware.

Notably, this includes the R430 line that powers the GeForce GPUs. While Nvidia has since issued new patched versions of all of its GeForce and many of its Quadro drivers, patches for some of its Quadro and Tesla drivers have not been released, and in some cases won’t be ready for two weeks.

The revelation of these substantial security flaws comes at an exceptionally awkward time for the GPU manufacturer, as it has just released its GeForce RTX Super line of graphics cards to capitalize on the post-E3 gaming excitement. Considering that concern for local privilege escalation vulnerabilities is often taken less seriously than more menacing remote code execution vulnerabilities due to the comparatively limited attack vector, gamers may not think to download and install a patch to their freshly purchased RTX Super GPU.

These security holes also coincide with a recent disappointing showing against AMD. After AMD successfully tricked Nvidia into sabotaging its own RTX Super release with a less-than-competitive price point, marketing gleaming new GPUs with high-severity vulnerabilities right out of the gate surely feels like getting salt in its wound.

One saving grace for Nvidia is that some hardware manufacturers may bundle the driver update as part of larger system updates, but users should definitely not count on this.

As things currently stand, a local code execution bug combined with a privilege execution bug can leave unpatched devices open to physical attacks in which a malicious actor gains physical access to a device to give themselves administrator privileges and run arbitrary code. This kind of attack is not out of the question, as many of the devices containing vulnerable Nvidia graphics cards are used by creatives who may or may not have robust security models, or may be using publicly accessible devices like those in libraries or gaming lounges. Regardless, any consumer with affected hardware should download and run the patch installers Nvidia has provided (or will soon provide, for those that are not yet available) as soon as possible.

Editors' Recommendations

Jonathan Terrasi
Jonathan has studiously followed trends in technology, particularly in information security and digital privacy, since 2014…
Nvidia just fixed a major problem that may have slowed down your CPU
The RTX 4070 Ti graphics card on a pink background.

Nvidia's latest graphics driver came out with an unfortunate side effect -- it drained your CPU usage. What's perhaps worse is that the only way to fix the issue permanently was to go back to an older version of the driver.

Fortunately, the problem was short-lived as Nvidia just rolled out a hotfix, and you should get it quickly to give your CPU a break. Here's where to find it.

Read more
No one is buying the RTX 4080 — will Nvidia finally slash its insane price?
Nvidia GeForce RTX 4080 lays on a pink surface.

Most of Nvidia's best graphics cards are currently readily available for sale, but that's not a good thing. No one is buying Nvidia's ill-fated RTX 4080, and a price cut might be on the way.

Will this situation give an edge to AMD, which is currently seeing an uptick in GPU sales?

Read more
Nvidia RTX 4070 Ti vs. AMD RX 7900 XT: Two odd choices for your next GPU
The RTX 4070 Ti graphics card on a pink background.

Nvidia's RTX 4070 Ti is here, which means that the AMD Radeon RX 7900 XT has a direct competitor now. Comparing AMD to Nvidia is never overly straightforward, but it can be done. Benchmark results speak for themselves, and we've got plenty of those, all based on our own thorough testing of both cards.

While the RTX 4070 Ti and the RX 7900 XT are not some of the best graphics cards on the current market, they certainly fill important roles by offering gaming at a more affordable price -- at least in theory. Below, we'll talk about which of these GPUs is the better option if you're looking to upgrade your PC.
Pricing and availability

Read more