Skip to content

OSG-SEC-2026-05-18 HIGH NVIDIA GPU Display Drivers Multiple Vulnerabilities

HIGH NVIDIA GPU Display Drivers Multiple Vulnerabilities

Dear OSG Security Contacts,

NVIDIA has released security updates addressing multiple vulnerabilities (CVE-2026-24187 and others) affecting NVIDIA GPU Display Drivers, Triton Inference Server, and TensorRT-LLM. From an OSG perspective, the Linux GPU Display Driver vulnerabilities appear the most relevant. The vulnerabilities may allow denial of service, escalation of privileges, information disclosure, data tampering, and potential code execution on affected systems.

IMPACTED VERSIONS:

  • Software Product: NVIDIA RTX, Quadro, NVS, Tesla,GeForce
  • Linux Driver Branch: R595, R580, R535
    NVIDIA has released updated driver versions for affected Linux driver branches, including updates for the R595, R580, and R535 release families.

WHAT ARE THE VULNERABILITIES:

According to NVIDIA, the vulnerabilities affect components within the GPU Display Driver stack and associated software. The published advisories indicate that successful exploitation of these issues may impact the confidentiality, integrity, and availability of affected systems depending on system configuration and deployment context.
While NVIDIA has also released updates for Triton Inference Server and TensorRT-LLM along with display drivers related to Windows vGPU, vGPU Manager, NVIDIA Cloud Gaming, the Linux GPU Display Driver vulnerabilities appear the most operationally relevant for OSG resource providers operating shared GPU infrastructure.

WHAT YOU SHOULD DO:

Administrators operating NVIDIA GPU infrastructure should review the NVIDIA advisories and apply the updated GPU Display Drivers as soon as operationally feasible.

Priority should be given to:
- Shared GPU compute environments
- Multi-user systems
- HTCondor worker nodes providing GPU access
- Systems running untrusted or externally supplied workloads

Administrators should verify the currently installed NVIDIA driver versions and update affected systems to the vendor-provided fixed releases listed above.
Some driver updates may require restarting GPU workloads or rebooting systems to fully apply the updated drivers.

REFERENCES

[1] https://nvidia.custhelp.com/app/answers/detail/a_id/5821
[2] https://www.nvidia.com/en-us/drivers/

Please contact the OSG security team at [email protected] if you have any questions or concerns.

OSG Security Team