Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistNvidiaCVELIST:CVE-2022-34671
HistoryDec 30, 2022 - 12:00 a.m.

CVE-2022-34671

2022-12-3000:00:00
CWE-787
nvidia
www.cve.org
8
nvidia
gpu
windows
vulnerability
user-mode
out-of-bounds write
code execution
information disclosure
denial of service

CVSS3

8.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

AI Score

8.7

Confidence

High

EPSS

0.001

Percentile

49.4%

JSON

NVIDIA GPU Display Driver for Windows contains a vulnerability in the user-mode layer, where an unprivileged user can cause an out-of-bounds write, which may lead to code execution, information disclosure, and denial of service.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "NVIDIA GPU Display Driver for Windows",
    "vendor": "NVIDIA",
    "versions": [
      {
        "status": "affected",
        "version": "All versions prior to and including 15.2, 13.7, and 11.12, and all versions prior to and including the May 2023 release"
      }
    ]
  }
]

Related

talosblog 2
talos 5
prion 1
nvd 1
cve 1
nessus 2
hp 2
nvidia 2
talosblog
talosblog
Vulnerability Spotlight: NVIDIA driver memory corruption vulnerabilities discovered
2022-12-06 16:09:02
Three vulnerabilities in NVIDIA graphics driver could cause memory corruption
2023-08-23 16:56:56
talos
talos
NVIDIA D3D10 Driver Shader Functionality MOV instruction memory corruption vulnerability
2022-12-06 00:00:00
NVIDIA D3D10 Driver Shader Functionality dcl_resource_structured index memory corruption vulnerability
2023-08-10 00:00:00
NVIDIA D3D10 Driver Shader Functionality DCL_INDEXRANGE instruction memory corruption vulnerability
2022-12-06 00:00:00
prion
prion
Information disclosure
2022-12-30 23:15:00
nvd
nvd
CVE-2022-34671
2022-12-30 23:15:09
cve
cve
CVE-2022-34671
2022-12-30 23:15:09
nessus
nessus
NVIDIA Windows GPU Display Driver (Jun 2023)
2023-06-30 00:00:00
NVIDIA Windows GPU Display Driver (Nov 2022)
2022-12-02 00:00:00
hp
hp
NVIDIA GPU Display Driver June 2023 Security Updates
2023-09-11 00:00:00
NVIDIA® GPU Display Driver November 2022 Security Update
2023-01-20 00:00:00
nvidia
nvidia
Security Bulletin: NVIDIA GPU Display Driver - June 2023
2023-06-26 00:00:00
Security Bulletin: NVIDIA GPU Display Driver - November 2022
2022-11-29 00:00:00

CVSS3

8.5

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

AI Score

8.7

Confidence

High

EPSS

0.001

Percentile

49.4%

JSON
Related for CVELIST:CVE-2022-34671
talosblog2talos5prion1nvd1cve1nessus2hp2nvidia2