Lucene search

[email protected]CVE-2022-34678

HistoryDec 30, 2022 - 11:15 p.m.

CVE-2022-34678

2022-12-3023:15:10

CWE-476

[email protected]

web.nvd.nist.gov

nvidia

gpu

display driver

windows

linux

vulnerability

cve-2022-34678

null-pointer dereference

denial of service

nvd

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

6.3 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.1%

JSON

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where an unprivileged user can cause a null-pointer dereference, which may lead to denial of service.

Affected configurations

NVD

Node

nvidiavirtual_gpuRange<11.11

nvidiavirtual_gpuRange12.0–13.6

nvidiavirtual_gpuRange14.0–14.4

AND

citrixhypervisorMatch-

linuxlinux_kernelMatch-

redhatenterprise_linux_kernel-based_virtual_machineMatch-

vmwarevsphereMatch-

Node

nvidiacloud_gamingRange<525.60.11

AND

linuxlinux_kernelMatch-

Node

nvidiacloud_gamingRange<525.60.12

AND

citrixhypervisorMatch-

redhatenterprise_linux_kernel-based_virtual_machineMatch-

Node

nvidiavirtual_gpuRange<11.11

nvidiavirtual_gpuRange13.0–13.6

nvidiavirtual_gpuRange14.0–14.4

AND

microsoftwindowsMatch-

Node

nvidiacloud_gamingRange<527.27

AND

microsoftwindowsMatch-

CPENameOperatorVersion
nvidia:virtual_gpunvidia virtual gpult11.11
nvidia:virtual_gpunvidia virtual gpult13.6
nvidia:virtual_gpunvidia virtual gpult14.4

CPE	Name	Operator	Version
nvidia:virtual_gpu	nvidia virtual gpu	lt	11.11
nvidia:virtual_gpu	nvidia virtual gpu	lt	13.6
nvidia:virtual_gpu	nvidia virtual gpu	lt	14.4

CNA Affected

[
  {
    "vendor": "NVIDIA",
    "product": "vGPU software (guest driver) - Windows, Linux and vGPU software (Virtual GPU Manager), NVIDIA Cloud Gaming (guest driver), NVIDIA Cloud Gaming (guest driver), NVIDIA Cloud Gaming (Virtual GPU Manager)",
    "versions": [
      {
        "version": "All versions prior to and including 14.2, 13.4, and 11.9, and all versions prior to the November 2022 release",
        "status": "affected"
      }
    ]
  }
]