Product
Security

NVIDIA takes security concerns seriously and works to quickly evaluate and address them. Once a security concern is reported, NVIDIA commits the appropriate resources to analyze, validate and provide corrective actions to address the issue.

NVIDIA encourages Coordinated Vulnerability Disclosure of security vulnerabilities through the Security Vulnerability Submission Form.

NVIDIA thanks the following individuals and organizations for their contribution towards making our products more secure.

2020

Security Bulletin ID	CVE IDs	Acknowledgment
5075	CVE-2020-5983, CVE-2020-5986	NVIDIA Product Security Team
5075	CVE-2020-5979	Jo Hemmerlein of Microsoft
5075	CVE-2020-5980	Andy Gill of Pen Test Partners LLP
5075	CVE-2020-5981	Piotr Bania of Cisco Talos
5052	CVE-2020-5975	Rhet Evans
5052	CVE-2020-5976	Martino Trevisan
5039	CVE-2020-5974	Michael de Gans
5031	CVE-2020-5962	Eviatar Gerzi, CyberArk Labs Nuttakorn Tungpoonsup, Secure D Center Research Team, Secure D Center Co.,Ltd. Ammarit Thongthua, Secure D Center Research Team, Secure D Center Co.,Ltd. Sittikorn Sangrattanapitak, Cybersecurity Researcher
5031	CVE-2020-5963	Thomas E. Carroll
5031	CVE-2020-5965	Piotr Bania of Cisco Talos
4996	CVE-2020-5957	Zhiniang Peng (@edwardzpeng) of Qihoo 360 Core Security and Xuefeng Li
NVIDIA also thanks the following individuals for their contribution towards making our products more secure Emmanuel B. Ivan Korolev of Doctor Web, Ltd. Ivashko Yurii Mahmoud Basel Jayyousi Michael de Gans Anurag Vijay Bhoir Deives Jonathan Bill Nickless Thomas Bryan Austin Mackey

Security Bulletin ID	CVE(s)	Acknowledgement
4954	CVE-2019-5702	RyotaK
4910	CVE-2019-5700	Ryan Grachek
4860	CVE-2019-5701	Hashim Jawad of ACTIVELabs
4860	CVE-2019-5695	Peleg Hadar of SafeBreach Labs
4860	CVE-2019-5689	Siyuan Yi of Chengdu University of Technology
4907	CVE-2019-5694 CVE-2019-5695	Peleg Hadar of SafeBreach Labs
4907	CVE-2019-5692	Lucas Pinheiro of Microsoft
4928	CVE-2019-5688	Jesse Michael and Mickey Shkatov of Eclypsium
4875	CVE-2019-5700	Ryan Grachek
4804	CVE-2019-5681	Yousra Aafer
4804	CVE-2019-5682	Leron Gray (daddycocoaman)
4841	CVE-2019-5684 CVE-2019-5685	Piotr Bania of Cisco Talos
4835	CVE-2019-5680	Balázs Triszka
4806	CVE-2019-5678	David Yesland of Rhino Security Labs
4797	CVE-2019-5676	Kushal Arvind Shah of Fortinet's FortiGuard Labs; Łukasz 'zaeek'; Yasin Soliman; Marius Gabriel Mihai; and Stefan Kanthak
4787	CVE-2019-5672	Jesse Raffa
4784	CVE-2019-5674	David Yesland of Rhino Security Labs
4772	CVE-2019-5665	Christoffer Wiman
N/A	N/A	Pankaj Kumar Thakur Taeyun Jang Jesse Michael and Mickey Shkatov of Eclypsium Rich Mirch Raghavendra Singh Sameer Phad Hamdi Maamri Jonesy

Security Bulletin ID	CVE(s)	Acknowledgement
4740	CVE-2018-6266	Akshay Jain
4740	CVE-2018-6263	Pierre-Alexandre Braeken
4738	CVE-2018-6260	Hoda Naghibijouybari, Ajaya Neupane, Zhiyun Qian, and Nael Abu-Ghazaleh
4725	CVE-2018-6261	Mark Barnes
4660	CVE-2018-6242	Kate Temkin
4649	CVE-2018-6251	Piotr Bania of Cisco Talos
N/A	N/A	Gehan Kaushal, Hassy Vinod

Security Bulletin ID	CVE(s)	Acknowledgement
N/A	N/A	Andriy Noble
4561	CVE-2017-0306 CVE-2016-6915 CVE-2016-6916 CVE-2016-6917	Nathan Crandall, Tesla Motors Product Security Team
4560	CVE-2017-0316	Tim Harrison
4544	CVE-2017-6269 CVE-2017-6270 CVE-2017-6271	Enrique Nissim, IOActive
4525	CVE-2017-6256	Enrique Nissim, IOActive
4525	CVE-2017-6259	Andrei Lascu and Alastair Donaldson, Multicore Programming Group at Imperial College London
4398	CVE-2017-0312 CVE-2017-0313	Oliver Chang, Google Project Zero
4398	CVE-2017-0317	Ryan Whitworth
N/A	N/A	Kushal Arvind Shah, Fortinet's FortiGuard Labs
N/A	N/A	Tim Harrison

Security Bulletin ID	CVE(s)	Acknowledgement
4279	CVE-2016-8827	Oden Schmit
4278	CVE-2016-8822	Oliver Chang, Google Project Zero
4278	CVE-2016-8823	Piotr Bania, Cisco Talos
4276	CVE-2016-6915 CVE-2016-6916 CVE-2016-6917	Nathan Crandall, Tesla Motors Product Security Team
4267	CVE-2016-3847 CVE-2016-3848	Nathan Crandall, Tesla Motors Product Security Team
4267	CVE-2016-3793	Peter Pi, Trend Micro
4267	CVE-2016-3815	Scott Bauer
4267	CVE-2016-3844	Chiachih Wu, CORE Team
4267	CVE-2016-3844	Mingjian Zhou, CORE Team
4267	CVE-2016-3844	Xuxian Jiang, CORE Team
4267	CVE-2016-3873	Sagi Kedmi, IBM Security X-Force Researcher
4267	CVE-2016-6688 CVE-2016-6677 CVE-2016-6687 CVE-2016-6686 CVE-2016-3930	Jianqiang Zhao
4267	CVE-2016-6688 CVE-2016-6677 CVE-2016-6687 CVE-2016-6686 CVE-2016-3930	PJF, IceSword Lab, Qihoo 360 Technology Co. Ltd.
4267	CVE-2016-3933	Mingjian Zhou, CORE Team
4267	CVE-2016-3933	Chiachih Wu, CORE Team
4267	CVE-2016-3933	Xuxian Jiang, CORE Team
4247	CVE-2016-8805 CVE-2016-8806 CVE-2016-8807 CVE-2016-8808 CVE-2016-8809 CVE-2016-8810 CVE-2016-8811 CVE-2016-8812 CVE-2016-7391 CVE-2016-7387 CVE-2016-7385 CVE-2016-7390 CVE-2016-7384 CVE-2016-7386	Oliver Chang, Google Project Zero
4213	CVE-2016-4959	Tripwire VERT
4213	CVE-2016-3161 CVE-2016-5852	Alin Ghica
4213	CVE-2016-4960 CVE-2016-4961	Joseph Bialek, Microsoft Vulnerability Research
4213	CVE-2016-5025	Daniel Cornel
4208	CVE-2016-2434 CVE-2016-2435 CVE-2016-2436 CVE-2016-2445 CVE-2016-2446	Jianqiang Zhao, IceSword Lab, Qihoo 360 Technology Co. Ltd.
4208	CVE-2016-2434 CVE-2016-2435 CVE-2016-2436 CVE-2016-2445 CVE-2016-2446	PJF, IceSword Lab, Qihoo 360 Technology Co. Ltd.
4208	CVE-2016-2437	Yuan-Tsung Lo, CORE Team
4208	CVE-2016-2437	Lubo Zhang, CORE Team
4208	CVE-2016-2437	Chiachih Wu, CORE Team
4208	CVE-2016-2437	Xuxian Jiang, CORE Team

Security Bulletin ID	CVE(s)	Acknowledgement
3810	CVE-2015-1538 CVE-2015-1539 CVE-2015-3824 CVE-2015-3826 CVE-2015-3827 CVE-2015-3828 CVE-2015-3829 CVE-2015-3864	Joshua J. Drake, Zimperium
3809	No CVE	McAfee/Intel Security in cooperation with NIVIDA
3808	CVE-2015-7869	Axel Monroy, Intel, in cooperation with NIVIDA
3808	CVE-2015-7869	Nikita Tarakanov, Intel, in cooperation with NVIDIA
3806	CVE-2015-7866	Wesley Daniels
3802	CVE-2015-5053	Mellanox Technologies in cooperation with NIVIDA
3763	CVE-2015-5950	Dario Weisser
3634	CVE-2015-1170	James Forshaw, Google Project Zero

Product
Security

2020

2019

2018

2017

2016

2015

2014

2013

Security Bulletin ID	CVE(s)	Acknowledgement
3618	CVE-2014-5332	Lee Campbell, Google Chrome Security
3610	CVE-2014-8093 CVE-2014-8098	Adam Jackson
3610	CVE-2014-8093 CVE-2014-8098	Alan Coopersmith
3610	CVE-2014-8298	Robert Morell, NVIDIA

Product Security

2020

2019

2018

2017

2016

2015

2014

2013

Product
Security