Lucene search

[email protected]CVE-2022-42258

HistoryDec 30, 2022 - 11:15 p.m.

CVE-2022-42258

2022-12-3023:15:10

CWE-190

[email protected]

web.nvd.nist.gov

nvidia

gpu

display driver

linux

integer overflow

vulnerability

cve-2022-42258

7.3 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:H

7 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to denial of service, data tampering, or information disclosure.

Affected configurations

NVD

Node

nvidiagpu_display_driverRange390–390.157linux

nvidiagpu_display_driverRange470–470.161.03linux

nvidiagpu_display_driverRange510–510.108.03linux

nvidiagpu_display_driverRange515–515.86.01linux

nvidiagpu_display_driverRange525–525.60.11linux

AND

nvidiageforceMatch-

nvidianvsMatch-

nvidiaquadroMatch-

nvidiartxMatch-

Node

nvidiagpu_display_driverRange450–450.216.04linux

nvidiagpu_display_driverRange470–470.161.03linux

nvidiagpu_display_driverRange510–510.108.03linux

nvidiagpu_display_driverRange515–515.86.01linux

nvidiagpu_display_driverRange525–525.60.11linux

AND

nvidiateslaMatch-

Node

nvidiacloud_gamingRange<525.60.12

AND

citrixhypervisorMatch-

redhatenterprise_linux_kernel-based_virtual_machineMatch-

Node

nvidiavirtual_gpuRange<11.11

nvidiavirtual_gpuRange12.0–13.6

nvidiavirtual_gpuRange14.0–14.4

AND

citrixhypervisorMatch-

linuxlinux_kernelMatch-

redhatenterprise_linux_kernel-based_virtual_machineMatch-

vmwarevsphereMatch-

Node

nvidiacloud_gamingRange<525.60.11

AND

linuxlinux_kernelMatch-

Node

debiandebian_linuxMatch10.0

CPENameOperatorVersion
nvidia:gpu_display_drivernvidia gpu display driverlt390.157
nvidia:gpu_display_drivernvidia gpu display driverlt470.161.03
nvidia:gpu_display_drivernvidia gpu display driverlt510.108.03
nvidia:gpu_display_drivernvidia gpu display driverlt515.86.01
nvidia:gpu_display_drivernvidia gpu display driverlt525.60.11

CPE	Name	Operator	Version
nvidia:gpu_display_driver	nvidia gpu display driver	lt	390.157
nvidia:gpu_display_driver	nvidia gpu display driver	lt	470.161.03
nvidia:gpu_display_driver	nvidia gpu display driver	lt	510.108.03
nvidia:gpu_display_driver	nvidia gpu display driver	lt	515.86.01
nvidia:gpu_display_driver	nvidia gpu display driver	lt	525.60.11

CNA Affected

[
  {
    "vendor": "NVIDIA",
    "product": "vGPU software (guest driver) - Linux, vGPU software (Virtual GPU Manager), NVIDIA Cloud Gaming (guest driver), NVIDIA Cloud Gaming (Virtual GPU Manager)",
    "versions": [
      {
        "version": "All versions prior to and including 14.2, 13.4, and 11.9, and all versions prior to the November 2022 release",
        "status": "affected"
      }
    ]
  }
]