← Back

CVE-2015-7865

nvd nist
Published: Nov 24, 2015Modified: May 6, 2026

JSON object

Loading...
7.7
Vector
AV:A/AC:L/Au:S/C:C/I:C/A:C
Exploitability: 5.1 / Impact: 10.0
Source: NVD

Description

nvSCPAPISvr.exe in the Stereoscopic 3D Driver Service in the NVIDIA GPU graphics driver R340 before 341.92, R352 before 354.35, and R358 before 358.87 on Windows does not properly restrict access to the stereosvrpipe named pipe, which allows local users to gain privileges via a commandline in a number 2 command, which is stored in the HKEY_LOCAL_MACHINE explorer Run registry key, a different vulnerability than CVE-2011-4784.

Affected (3)

Products: Nvidia: Gpu Driver
Nvidia
1 product
Gpu Driver
Configuration A
3 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Nvidia
Gpu Driver
From 340 to 341.92
Gpu Driver
From 352 to 354.35
Gpu Driver
From 358 to 358.87
Running on/withPlatform Versions
Microsoft
Windows
All versions

Related CWEs

CWE-284
Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (12)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Third Party AdvisoryVDB Entry
Source: cve@mitre.org
Third Party AdvisoryVDB Entry
Source: cve@mitre.org
ExploitMitigationThird Party Advisory
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitMitigationThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry

Timeline

No history available yet.