NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the ECC layer, where an unprivileged regular user can cause an out-of-bounds write, which may lead to denial of service and data tampering.
References
Link | Resource |
---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5353 | Patch Vendor Advisory |
https://security.gentoo.org/glsa/202310-02 | Third Party Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
15 Oct 2023, 01:58
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:nvidia:gpu_display_driver:-:*:*:*:*:linux:*:* |
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* |
First Time |
Microsoft
Microsoft windows Linux Linux linux Kernel |
|
References | (GENTOO) https://security.gentoo.org/glsa/202310-02 - Third Party Advisory |
03 Oct 2023, 15:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
11 Oct 2022, 20:35
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 3.6
v3 : 7.1 |
26 May 2022, 18:25
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://nvidia.custhelp.com/app/answers/detail/a_id/5353 - Patch, Vendor Advisory | |
First Time |
Nvidia
Nvidia virtual Gpu Nvidia gpu Display Driver |
|
CVSS |
v2 : v3 : |
v2 : 3.6
v3 : 6.8 |
CWE | CWE-787 | |
CPE | cpe:2.3:a:nvidia:virtual_gpu:14.0:*:*:*:*:*:*:* cpe:2.3:a:nvidia:gpu_display_driver:-:*:*:*:*:linux:*:* cpe:2.3:a:nvidia:gpu_display_driver:-:*:*:*:*:windows:*:* cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:* |
17 May 2022, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-05-17 20:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-28185
Mitre link : CVE-2022-28185
CVE.ORG link : CVE-2022-28185
JSON object : View
Products Affected
nvidia
- virtual_gpu
microsoft
- windows
linux
- linux_kernel
CWE
CWE-787
Out-of-bounds Write