NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where the product receives input or data, but does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly, which may lead to denial of service.
References
Link | Resource |
---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5353 | Patch Vendor Advisory |
Configurations
History
26 May 2022, 16:32
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://nvidia.custhelp.com/app/answers/detail/a_id/5353 - Patch, Vendor Advisory | |
CWE | CWE-20 | |
CVSS |
v2 : v3 : |
v2 : 4.9
v3 : 5.5 |
CPE | cpe:2.3:a:nvidia:virtual_gpu:14.0:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:gpu_display_driver:-:*:*:*:*:windows:*:* cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:* |
17 May 2022, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-05-17 20:15
Updated : 2024-02-04 22:29
NVD link : CVE-2022-28188
Mitre link : CVE-2022-28188
CVE.ORG link : CVE-2022-28188
JSON object : View
Products Affected
microsoft
- windows
nvidia
- gpu_display_driver
- virtual_gpu
CWE
CWE-20
Improper Input Validation