Nvidia has addressed three vulnerabilities in its Windows drivers for GeForce, Quadro, and Tesla GPUs. By exploiting the vulnerabilities attackers can cause privilege escalation.
Nvidia has provided a brief explanation of the vulnerabilities in its latest security bulletin. The most serious vulnerability is CVE-2019-5675, which relates to a vulnerability in the kernel mode layer handler for DxgkDdiEscape where the product does not properly synchronize shared data.
The vulnerabilities can be exploited for denial of service attacks, increase system rights, or obtain information from the machine.