Lucene search

[email protected]CVE-2022-34677

HistoryDec 30, 2022 - 11:15 p.m.

CVE-2022-34677

2022-12-3023:15:09

CWE-681

CWE-125

[email protected]

web.nvd.nist.gov

nvidia

gpu

display driver

linux

vulnerability

cve-2022-34677

nvd

security

7.1 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

6.7 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an unprivileged regular user can cause an integer to be truncated, which may lead to denial of service or data tampering.

Affected configurations

NVD

Node

nvidiagpu_display_driverRange390–390.157linux

nvidiagpu_display_driverRange470–470.161.03linux

nvidiagpu_display_driverRange510–510.108.03linux

nvidiagpu_display_driverRange515–515.86.01linux

nvidiagpu_display_driverRange525–525.60.11linux

AND

nvidiageforceMatch-

nvidianvsMatch-

nvidiaquadroMatch-

nvidiartxMatch-

Node

nvidiagpu_display_driverRange450–450.216.04linux

nvidiagpu_display_driverRange470–470.161.03linux

nvidiagpu_display_driverRange510–510.108.03linux

nvidiagpu_display_driverRange515–515.86.01linux

nvidiagpu_display_driverRange525–525.60.11linux

AND

nvidiateslaMatch-

Node

nvidiacloud_gamingRange<525.60.12

AND

citrixhypervisorMatch-

redhatenterprise_linux_kernel-based_virtual_machineMatch-

Node

nvidiavirtual_gpuRange<11.11

nvidiavirtual_gpuRange12.0–13.6

nvidiavirtual_gpuRange14.0–14.4

AND

citrixhypervisorMatch-

linuxlinux_kernelMatch-

redhatenterprise_linux_kernel-based_virtual_machineMatch-

vmwarevsphereMatch-

Node

nvidiacloud_gamingRange<525.60.11

AND

linuxlinux_kernelMatch-

Node

debiandebian_linuxMatch10.0

CPENameOperatorVersion
nvidia:gpu_display_drivernvidia gpu display driverlt390.157
nvidia:gpu_display_drivernvidia gpu display driverlt470.161.03
nvidia:gpu_display_drivernvidia gpu display driverlt510.108.03
nvidia:gpu_display_drivernvidia gpu display driverlt515.86.01
nvidia:gpu_display_drivernvidia gpu display driverlt525.60.11

CPE	Name	Operator	Version
nvidia:gpu_display_driver	nvidia gpu display driver	lt	390.157
nvidia:gpu_display_driver	nvidia gpu display driver	lt	470.161.03
nvidia:gpu_display_driver	nvidia gpu display driver	lt	510.108.03
nvidia:gpu_display_driver	nvidia gpu display driver	lt	515.86.01
nvidia:gpu_display_driver	nvidia gpu display driver	lt	525.60.11

CNA Affected

[
  {
    "vendor": "NVIDIA",
    "product": "vGPU software (guest driver) - Linux, vGPU software (Virtual GPU Manager), NVIDIA Cloud Gaming (guest driver), NVIDIA Cloud Gaming (Virtual GPU Manager)",
    "versions": [
      {
        "version": "All versions prior to and including 14.2, 13.4, and 11.9, and all versions prior to the November 2022 release",
        "status": "affected"
      }
    ]
  }
]