CVE-2022-34671
8.5
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Summary
NVIDIA GPU Display Driver for Windows contains a vulnerability in the user-mode layer, where an unprivileged user can cause an out-of-bounds write, which may lead to code execution, information disclosure, and denial of service.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| NVIDIA | NVIDIA GPU Display Driver for Windows | All versions prior to and including 15.2, 13.7, and 11.12, and all versions prior to and including the May 2023 release | affected |
Weaknesses
- CWE-787: CWE-787 Out-of-bounds Write
ADP Enrichment
CVE Program Container
Additional References
- https://nvidia.custhelp.com/app/answers/detail/a_id/5415
- https://nvidia.custhelp.com/app/answers/detail/a_id/5468
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1720
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1721
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1719
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
- https://nvidia.custhelp.com/app/answers/detail/a_id/5415
- https://nvidia.custhelp.com/app/answers/detail/a_id/5468
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1720
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1721
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2023-1719
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.