Vulnerability in Nvidia Geforce
CVE-2026-24191
NVIDIA Display Driver for Windows contains a vulnerability where an attacker could cause a time-of-check time-of-use issue. A successful exploit of this vulnerability might lead to denial of service, escalation of privileges, information d…
Vulnerability class: TOCTOU (Time-of-Check to Time-of-Use)
EPSS: 0.000 (1.5th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H.
Affected products
- Nvidia Geforce — versions All driver versions prior to 596.36, All driver versions prior to 582.53 Only GPUs based on the NVIDIA Maxwell, Volta, and Pascal GPU architectures are affected.
- Nvidia Guest Driver — versions 595.97(All versions prior to and including vGPU 20.0), 582.16(All versions prior to and including vGPU 19.4), 539.64(All versions prior to and including vGPU 16.13)
- Nvidia Rtx, Quadro, Nvs — versions All driver versions prior to 596.36, All driver versions prior to 582.53, All driver versions prior to 539.72
- Nvidia Rtx, Quadro, Nvs — versions All driver versions prior to 596.36, All driver versions prior to 582.53, All driver versions prior to 539.72
- Nvidia Tesla — versions All driver versions prior to 596.36, All driver versions prior to 582.53, All driver versions prior to 539.72
- Nvidia Virtual Gpu Manager — versions 595.94(All versions prior to and including vGPU 20.0), 582.16(All versions prior to and including vGPU 19.4)
Weakness classification (CWE)
References
Frequently asked questions
- What is CVE-2026-24191?
- CVE-2026-24191 is a high-severity vulnerability in Nvidia Geforce, classified under Time-of-check Time-of-use (TOCTOU) Race Condition. CVSS score: 7.8/10. Published 2026-05-26.
- How severe is CVE-2026-24191?
- High severity. CVSS v3 base score is 7.8 out of 10.