What is CVE-2026-24195?

CVE-2026-24195 is a high-severity vulnerability in Nvidia Guest Driver, classified under Improper Input Validation. CVSS score: 7.1/10. Published 2026-05-26.

How severe is CVE-2026-24195?

High severity. CVSS v3 base score is 7.1 out of 10.

Improper input validation in Nvidia Guest Driver

CVE-2026-24195

NVIDIA Display Driver for Linux contains a vulnerability in UVM, where a user could cause improper input validation. A successful exploit of this vulnerability might lead to denial of service.

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.000 (3.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.1 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H.

Affected products

Nvidia Guest Driver — versions 595.58.03(All versions prior to and including vGPU 20.0), 580.126.09(All versions prior to and including vGPU 19.4), 595.58.03(All versions up to and including the March 2026 release)

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

Frequently asked questions

What is CVE-2026-24195?: CVE-2026-24195 is a high-severity vulnerability in Nvidia Guest Driver, classified under Improper Input Validation. CVSS score: 7.1/10. Published 2026-05-26.
How severe is CVE-2026-24195?: High severity. CVSS v3 base score is 7.1 out of 10.