NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where a local user with basic capabilities can cause an out-of-bounds read, which may lead to a system crash or a leak of internal kernel information.
References
Link | Resource |
---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5383 | Patch Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
Configuration 5 (hide)
AND |
|
Configuration 6 (hide)
AND |
|
History
28 Nov 2022, 20:37
Type | Values Removed | Values Added |
---|---|---|
First Time |
Nvidia
Nvidia studio Microsoft windows Microsoft Nvidia cloud Gaming Guest Nvidia virtual Gpu Nvidia tesla Nvidia gpu Display Driver Nvidia geforce |
|
CPE | cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:* cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:* cpe:2.3:a:nvidia:cloud_gaming_guest:*:*:*:*:*:*:*:* cpe:2.3:a:nvidia:studio:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:tesla:-:*:*:*:*:*:*:* cpe:2.3:h:nvidia:geforce:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:virtual_gpu:14.0:*:*:*:*:*:*:* |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.1 |
CWE | CWE-125 | |
References | (MISC) https://nvidia.custhelp.com/app/answers/detail/a_id/5383 - Patch, Vendor Advisory |
19 Nov 2022, 00:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-11-19 00:15
Updated : 2023-12-10 14:48
NVD link : CVE-2022-31612
Mitre link : CVE-2022-31612
CVE.ORG link : CVE-2022-31612
JSON object : View
Products Affected
nvidia
- studio
- tesla
- gpu_display_driver
- virtual_gpu
- geforce
- cloud_gaming_guest
microsoft
- windows
CWE
CWE-125
Out-of-bounds Read