Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2022-34671
HistoryDec 30, 2022 - 11:15 p.m.

CVE-2022-34671

2022-12-3023:15:09
CWE-787
[email protected]
web.nvd.nist.gov
279
4
nvidia
gpu
display driver
windows
vulnerability
cve-2022-34671
code execution
information disclosure
denial of service

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

51.1%

JSON

NVIDIA GPU Display Driver for Windows contains a vulnerability in the user-mode layer, where an unprivileged user can cause an out-of-bounds write, which may lead to code execution, information disclosure, and denial of service.

Affected configurations

NVD
Node
nvidianvsMatch-
OR
nvidiaquadroMatch-
OR
nvidiartxMatch-
AND
nvidiagpu_display_driverRange470474.14windows
OR
nvidiagpu_display_driverRange510514.08windows
OR
nvidiagpu_display_driverRange515517.88windows
OR
nvidiagpu_display_driverRange525527.27windows
Node
nvidiateslaMatch-
AND
nvidiagpu_display_driverRange450454.02windows
OR
nvidiagpu_display_driverRange470474.14windows
OR
nvidiagpu_display_driverRange510514.08windows
OR
nvidiagpu_display_driverRange515517.88windows
OR
nvidiagpu_display_driverRange525527.41windows
Node
nvidiastudioMatch-
AND
nvidiagpu_display_driverRange525526.98windows
Node
nvidiageforceMatch-
AND
nvidiagpu_display_driverRange470474.14windows
OR
nvidiagpu_display_driverRange525526.98windows

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "NVIDIA GPU Display Driver for Windows",
    "vendor": "NVIDIA",
    "versions": [
      {
        "status": "affected",
        "version": "All versions prior to and including 15.2, 13.7, and 11.12, and all versions prior to and including the May 2023 release"
      }
    ]
  }
]

Social References

More

Related

talos 5
prion 1
talosblog 2
cvelist 1
nvd 1
nessus 2
hp 2
nvidia 2
talos
talos
NVIDIA D3D10 Driver Shader Functionality dcl_resource_structured index memory corruption vulnerability
2023-08-10 00:00:00
NVIDIA D3D10 Driver Shader Functionality MOV instruction memory corruption vulnerability
2022-12-06 00:00:00
NVIDIA D3D10 Driver Shader Functionality undeclared dcl_output memory corruption vulnerability
2023-08-10 00:00:00
prion
prion
Information disclosure
2022-12-30 23:15:00
talosblog
talosblog
Three vulnerabilities in NVIDIA graphics driver could cause memory corruption
2023-08-23 16:56:56
Vulnerability Spotlight: NVIDIA driver memory corruption vulnerabilities discovered
2022-12-06 16:09:02
cvelist
cvelist
CVE-2022-34671
2022-12-30 00:00:00
nvd
nvd
CVE-2022-34671
2022-12-30 23:15:09
nessus
nessus
NVIDIA Windows GPU Display Driver (Jun 2023)
2023-06-30 00:00:00
NVIDIA Windows GPU Display Driver (Nov 2022)
2022-12-02 00:00:00
hp
hp
NVIDIA GPU Display Driver June 2023 Security Updates
2023-09-11 00:00:00
NVIDIA® GPU Display Driver November 2022 Security Update
2023-01-20 00:00:00
nvidia
nvidia
Security Bulletin: NVIDIA GPU Display Driver - June 2023
2023-06-26 00:00:00
Security Bulletin: NVIDIA GPU Display Driver - November 2022
2022-11-29 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

51.1%

JSON
Related for CVE-2022-34671
talos5prion1talosblog2cvelist1nvd1nessus2hp2nvidia2