Lucene search
HistoryDec 30, 2022 - 11:15 p.m.
CVE-2022-42264
nvidia
gpu
display driver
linux
vulnerability
kernel mode
out-of-range pointer
data tampering
data loss
information disclosure
denial of service
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
13.0%
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where an unprivileged regular user can cause the use of an out-of-range pointer offset, which may lead to data tampering, data loss, information disclosure, or denial of service.
Affected configurations
Node
nvidiavirtual_gpuRange<11.11
ORnvidiavirtual_gpuRange12.0–13.6
ORnvidiavirtual_gpuRange14.0–14.4
citrixhypervisorMatch-
ORlinuxlinux_kernelMatch-
ORredhatenterprise_linux_kernel-based_virtual_machineMatch-
ORvmwarevsphereMatch-
Node
nvidiacloud_gamingRange<525.60.11
linuxlinux_kernelMatch-
Node
nvidiacloud_gamingRange<525.60.12
citrixhypervisorMatch-
ORredhatenterprise_linux_kernel-based_virtual_machineMatch-
Node
nvidiagpu_display_driverRange470–470.161.03linux
ORnvidiagpu_display_driverRange510–510.108.03linux
ORnvidiagpu_display_driverRange515–515.86.01linux
nvidiageforceMatch-
ORnvidianvsMatch-
ORnvidiaquadroMatch-
ORnvidiartxMatch-
Node
nvidiagpu_display_driverRange450–450.216.04linux
ORnvidiagpu_display_driverRange470–470.161.03linux
ORnvidiagpu_display_driverRange510–510.108.03linux
nvidiateslaMatch-
| Vendor | Product | Version | CPE |
|---|---|---|---|
| nvidia | virtual_gpu | * | cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:* |
| citrix | hypervisor | - | cpe:2.3:o:citrix:hypervisor:-:*:*:*:*:*:*:* |
| linux | linux_kernel | - | cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* |
| redhat | enterprise_linux_kernel-based_virtual_machine | - | cpe:2.3:o:redhat:enterprise_linux_kernel-based_virtual_machine:-:*:*:*:*:*:*:* |
| vmware | vsphere | - | cpe:2.3:o:vmware:vsphere:-:*:*:*:*:*:*:* |
| nvidia | cloud_gaming | * | cpe:2.3:a:nvidia:cloud_gaming:*:*:*:*:*:*:*:* |
| nvidia | gpu_display_driver | * | cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:* |
| nvidia | geforce | - | cpe:2.3:a:nvidia:geforce:-:*:*:*:*:*:*:* |
| nvidia | nvs | - | cpe:2.3:a:nvidia:nvs:-:*:*:*:*:*:*:* |
| nvidia | quadro | - | cpe:2.3:a:nvidia:quadro:-:*:*:*:*:*:*:* |
Related
cve
cve
CVE-2022-42264
2022-12-30 23:15:11
cvelist
cvelist
CVE-2022-42264
2022-12-30 00:00:00
debiancve
debiancve
CVE-2022-42264
2022-12-30 23:15:11
ubuntucve
ubuntucve
CVE-2022-42264
2022-12-30 00:00:00
prion
prion
Design/Logic Flaw
2022-12-30 23:15:00
nessus
nessus
NVIDIA Virtual GPU Manager Multiple Vulnerabilities (November 2022)
2023-09-14 00:00:00
NVIDIA Linux GPU Display Driver (Nov 2022)
2022-12-02 00:00:00
GLSA-202310-02 : NVIDIA Drivers: Multiple Vulnerabilities
2023-10-03 00:00:00
nvidia
nvidia
Security Bulletin: NVIDIA GPU Display Driver - November 2022
2022-11-29 00:00:00
gentoo
gentoo
NVIDIA Drivers: Multiple Vulnerabilities
2023-10-03 00:00:00
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0
Percentile
13.0%
Related for NVD:CVE-2022-42264