NVIDIA Windows GPU Display Driver contains a vulnerability in the kernel mode layer (nvlddmkm.sys) create context command DDI DxgkDdiCreateContext in which the product uses untrusted input when calcul

The impact of CVE-2019-5666 includes the potential for denial of service (DoS) and privilege escalation. A DoS condition could result in system crashes or instability, disrupting critical operations. Privilege escalation could allow an attacker to gain elevated privileges, potentially compromising the entire system. The vulnerability's location within the kernel mode driver makes it particularly concerning, as it can be exploited to bypass security controls at a low level.

1. Gereserveerd2019-01-07
2. Gepubliceerd2019-02-27
3. Gewijzigd2024-09-17
4. EPSS bijgewerkt2026-04-02

The primary mitigation for CVE-2019-5666 is to update to the latest available version of the NVIDIA GPU Graphics Driver. NVIDIA typically releases security updates to address these types of vulnerabilities. Until an update is available, consider limiting the use of graphics-intensive applications and monitoring system logs for any suspicious activity related to the NVIDIA GPU driver. Implement kernel-level security hardening measures to reduce the attack surface.