NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where a local user with basic capabilities can cause an out-of-bounds read, which may lead to denial of service, or information disclosure.
References
Link | Resource |
---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5383 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
History
29 Nov 2022, 15:26
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://nvidia.custhelp.com/app/answers/detail/a_id/5383 - Patch, Vendor Advisory | |
CPE | cpe:2.3:a:nvidia:cloud_gaming_guest:*:*:*:*:*:*:*:* cpe:2.3:a:nvidia:studio:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:virtual_gpu:14.0:*:*:*:*:*:*:* cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:* cpe:2.3:h:nvidia:tesla:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:geforce:-:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.1 |
CWE | CWE-125 |
20 Nov 2022, 02:44
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-19 00:15
Updated : 2024-02-04 23:14
NVD link : CVE-2022-31616
Mitre link : CVE-2022-31616
CVE.ORG link : CVE-2022-31616
JSON object : View
Products Affected
nvidia
- tesla
- studio
- virtual_gpu
- cloud_gaming_guest
- gpu_display_driver
- geforce
microsoft
- windows