CVE-2022-21818

Summary

NVIDIA License System contains a vulnerability in the installation scripts for the DLS virtual appliance, where a user on a network after signing in to the portal can access other users’ credentials, allowing them to gain escalated privileges, resulting in limited impact to both confidentiality and integrity.

Affected Software

VendorProductVersion RangeStatus
NVIDIANVIDIA License SystemAll versions prior to 1.1affected

Weaknesses

  • CWE-312: CWE-312 Cleartext Storage of Sensitive Information

ADP Enrichment

CVE Program Container

Additional References

References