{
  "document" : {
    "aggregate_severity" : {
      "text" : "mittel"
    },
    "category" : "csaf_base",
    "csaf_version" : "2.0",
    "distribution" : {
      "tlp" : {
        "label" : "WHITE",
        "url" : "https://www.first.org/tlp/"
      }
    },
    "lang" : "de-DE",
    "notes" : [ {
      "category" : "legal_disclaimer",
      "text" : "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen."
    }, {
      "category" : "description",
      "text" : "NVidia ist ein Hersteller von Grafikkarten.",
      "title" : "Produktbeschreibung"
    }, {
      "category" : "summary",
      "text" : "Ein Angreifer kann mehrere Schwachstellen in Nvidia Treiber ausnutzen, um beliebigen Programmcode auszuführen, um einen Denial of Service Angriff durchzuführen, um Informationen offenzulegen, um seine Privilegien zu erhöhen, und um Daten zu manipulieren.",
      "title" : "Angriff"
    }, {
      "category" : "general",
      "text" : "- Linux\n- UNIX\n- Windows",
      "title" : "Betroffene Betriebssysteme"
    } ],
    "publisher" : {
      "category" : "other",
      "contact_details" : "csaf-provider@cert-bund.de",
      "name" : "Bundesamt für Sicherheit in der Informationstechnik",
      "namespace" : "https://www.bsi.bund.de"
    },
    "references" : [ {
      "category" : "self",
      "summary" : "WID-SEC-W-2026-0235 - CSAF Version",
      "url" : "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-0235.json"
    }, {
      "category" : "self",
      "summary" : "WID-SEC-2026-0235 - Portal Version",
      "url" : "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-0235"
    }, {
      "category" : "external",
      "summary" : "NVIDIA Security Bulletin vom 2026-01-27",
      "url" : "https://nvidia.custhelp.com/app/answers/detail/a_id/5747"
    }, {
      "category" : "external",
      "summary" : "Dell Security Advisory DSA-2026-015 vom 2026-01-29",
      "url" : "https://www.dell.com/support/kbdoc/000398669"
    }, {
      "category" : "external",
      "summary" : "Lenovo Security Advisory LEN-210045 vom 2026-02-10",
      "url" : "https://support.lenovo.com/us/en/product_security/LEN-210045"
    }, {
      "category" : "external",
      "summary" : "HP Security Bulletin HPSBHF04099 vom 2026-03-13",
      "url" : "https://support.hp.com/de-de/document/ish_14442778-14444847-16/HPSBHF04099"
    } ],
    "source_lang" : "en-US",
    "title" : "Nvidia Treiber: Mehrere Schwachstellen",
    "tracking" : {
      "current_release_date" : "2026-03-17T23:00:00.000+00:00",
      "generator" : {
        "date" : "2026-03-18T08:48:15.746+00:00",
        "engine" : {
          "name" : "BSI-WID",
          "version" : "1.5.0"
        }
      },
      "id" : "WID-SEC-W-2026-0235",
      "initial_release_date" : "2026-01-27T23:00:00.000+00:00",
      "revision_history" : [ {
        "date" : "2026-01-27T23:00:00.000+00:00",
        "number" : "1",
        "summary" : "Initiale Fassung"
      }, {
        "date" : "2026-01-28T23:00:00.000+00:00",
        "number" : "2",
        "summary" : "Neue Updates von European Union Vulnerability Database und Dell aufgenommen"
      }, {
        "date" : "2026-02-10T23:00:00.000+00:00",
        "number" : "3",
        "summary" : "Neue Updates von LENOVO aufgenommen"
      }, {
        "date" : "2026-03-17T23:00:00.000+00:00",
        "number" : "4",
        "summary" : "Neue Updates von HP aufgenommen"
      } ],
      "status" : "final",
      "version" : "4"
    }
  },
  "product_tree" : {
    "branches" : [ {
      "branches" : [ {
        "category" : "product_name",
        "name" : "Dell Computer",
        "product" : {
          "name" : "Dell Computer",
          "product_id" : "T049788",
          "product_identification_helper" : {
            "cpe" : "cpe:/o:dell:dell_computer:-"
          }
        }
      } ],
      "category" : "vendor",
      "name" : "Dell"
    }, {
      "branches" : [ {
        "category" : "product_name",
        "name" : "HP Computer",
        "product" : {
          "name" : "HP Computer",
          "product_id" : "T032784",
          "product_identification_helper" : {
            "cpe" : "cpe:/h:hp:computer:-"
          }
        }
      } ],
      "category" : "vendor",
      "name" : "HP"
    }, {
      "branches" : [ {
        "category" : "product_name",
        "name" : "Lenovo Computer",
        "product" : {
          "name" : "Lenovo Computer",
          "product_id" : "T048897",
          "product_identification_helper" : {
            "cpe" : "cpe:/h:lenovo:computer:-"
          }
        }
      } ],
      "category" : "vendor",
      "name" : "Lenovo"
    }, {
      "branches" : [ {
        "category" : "product_name",
        "name" : "Nvidia Treiber",
        "product" : {
          "name" : "Nvidia Treiber",
          "product_id" : "T050372",
          "product_identification_helper" : {
            "cpe" : "cpe:/a:nvidia:display_driver:-"
          }
        }
      } ],
      "category" : "vendor",
      "name" : "Nvidia"
    } ]
  },
  "vulnerabilities" : [ {
    "cve" : "CVE-2025-33217",
    "product_status" : {
      "known_affected" : [ "T032784", "T050372", "T048897", "T049788" ]
    },
    "release_date" : "2026-01-27T23:00:00.000+00:00",
    "title" : "CVE-2025-33217"
  }, {
    "cve" : "CVE-2025-33218",
    "product_status" : {
      "known_affected" : [ "T032784", "T050372", "T048897", "T049788" ]
    },
    "release_date" : "2026-01-27T23:00:00.000+00:00",
    "title" : "CVE-2025-33218"
  }, {
    "cve" : "CVE-2025-33219",
    "product_status" : {
      "known_affected" : [ "T032784", "T050372", "T048897", "T049788" ]
    },
    "release_date" : "2026-01-27T23:00:00.000+00:00",
    "title" : "CVE-2025-33219"
  }, {
    "cve" : "CVE-2025-33220",
    "product_status" : {
      "known_affected" : [ "T032784", "T050372", "T048897", "T049788" ]
    },
    "release_date" : "2026-01-27T23:00:00.000+00:00",
    "title" : "CVE-2025-33220"
  }, {
    "cve" : "CVE-2025-33237",
    "product_status" : {
      "known_affected" : [ "T032784", "T050372", "T048897", "T049788" ]
    },
    "release_date" : "2026-01-27T23:00:00.000+00:00",
    "title" : "CVE-2025-33237"
  } ]
}