NVIDIA GPU Display Driver for Windows contains a vulnerability in the DirectX11 user mode driver (nvwgf2um/x.dll), where an unauthorized attacker on the network can cause an out-of-bounds write through a specially crafted shader, which may lead to code execution to cause denial of service, escalation of privileges, information disclosure, and data tampering. The scope of the impact may extend to other components.
References
| Link | Resource |
|---|---|
| https://nvidia.custhelp.com/app/answers/detail/a_id/5353 | Patch Vendor Advisory |
Configurations
History
26 May 2022, 19:04
| Type | Values Removed | Values Added |
|---|---|---|
| References | (MISC) https://nvidia.custhelp.com/app/answers/detail/a_id/5353 - Patch, Vendor Advisory | |
| CWE | CWE-787 | |
| CPE | cpe:2.3:a:nvidia:virtual_gpu:14.0:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:gpu_display_driver:-:*:*:*:*:windows:*:* cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:* |
|
| CVSS |
v2 : v3 : |
v2 : 6.8
v3 : 8.5 |
17 May 2022, 20:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2022-05-17 20:15
Updated : 2024-02-04 22:29
NVD link : CVE-2022-28182
Mitre link : CVE-2022-28182
CVE.ORG link : CVE-2022-28182
JSON object : View
Products Affected
microsoft
- windows
nvidia
- gpu_display_driver
- virtual_gpu
CWE
CWE-787
Out-of-bounds Write