NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where the product receives input or data, but does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly, which may lead to denial of service or data tampering.
References
Link | Resource |
---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5353 | Patch Vendor Advisory |
Configurations
History
26 May 2022, 18:32
Type | Values Removed | Values Added |
---|---|---|
CWE | CWE-20 | |
CPE | cpe:2.3:a:nvidia:virtual_gpu:14.0:*:*:*:*:*:*:* cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:gpu_display_driver:-:*:*:*:*:windows:*:* cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:* |
|
References | (MISC) https://nvidia.custhelp.com/app/answers/detail/a_id/5353 - Patch, Vendor Advisory | |
First Time |
Nvidia gpu Display Driver
Microsoft Microsoft windows Nvidia Nvidia virtual Gpu |
|
CVSS |
v2 : v3 : |
v2 : 3.6
v3 : 6.1 |
17 May 2022, 20:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-05-17 20:15
Updated : 2023-12-10 14:22
NVD link : CVE-2022-28186
Mitre link : CVE-2022-28186
CVE.ORG link : CVE-2022-28186
JSON object : View
Products Affected
nvidia
- virtual_gpu
- gpu_display_driver
microsoft
- windows
CWE
CWE-20
Improper Input Validation