NVIDIA GPU Display Driver for Windows: Privilege Escalation via Symbolic Link Attack

NVIDIA GPU Display Driver for Windows: Privilege Escalation via Symbolic Link Attack

CVE-2021-1092 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

NVIDIA GPU Display Driver for Windows contains a vulnerability in the NVIDIA Control Panel application where it is susceptible to a Windows file system symbolic link attack where an unprivileged attacker can cause the applications to overwrite privileged files, resulting in potential denial of service or data loss.

Learn more about our Web Application Penetration Testing UK.