Lucene search

K
cve[email protected]CVE-2022-34666
HistoryNov 10, 2022 - 4:15 p.m.

CVE-2022-34666

2022-11-1016:15:10
CWE-476
web.nvd.nist.gov
38
8
nvidia
gpu
display driver
windows
linux
vulnerability
cve-2022-34666

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

5.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a local user with basic capabilities can cause a null-pointer dereference, which may lead to denial of service.

Affected configurations

NVD
Node
nvidiavirtual_gpuRange<11.9
OR
nvidiavirtual_gpuRange13.013.4
OR
nvidiavirtual_gpuRange14.014.2
AND
linuxlinux_kernelMatch-
OR
microsoftwindowsMatch-
Node
nvidiacloud_gamingRange<516.94
AND
microsoftwindowsMatch-
Node
nvidiacloud_gamingRange<515.65.01
AND
citrixhypervisorMatch-
OR
linuxlinux_kernelMatch-
OR
redhatenterprise_linux_kernel-based_virtual_machineMatch-

CNA Affected

[
  {
    "vendor": "NVIDIA",
    "product": "NVIDIA Cloud Gaming (guest driver), NVIDIA Cloud Gaming (Virtual GPU Manager)",
    "versions": [
      {
        "version": "All versions prior to the August 2022 release",
        "status": "affected"
      }
    ]
  }
]

Social References

More

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

5.8 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%