PT-2022-20868 · Nvidia · Nvidia Gpu Display Driver

Thierry Doré

Published

2022-08-02

Updated

2022-11-28

CVE-2022-31606

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions NVIDIA GPU Display Driver for Windows (affected versions not specified)

Description The issue is related to a failure to properly validate data in the kernel mode layer handler for DxgkDdiEscape, which might allow an attacker with basic user capabilities to cause an out-of-bounds access in kernel mode. This could potentially lead to denial of service, information disclosure, escalation of privileges, or data tampering.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Memory Corruption

UI Misrepresentation of Critical Information

RCE

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-451CWE-20CWE-119

Related Identifiers

BDU:2025-04596

CVE-2022-31606

Affected Products

Nvidia Gpu Display Driver

PT-2022-20868 · Nvidia · Nvidia Gpu Display Driver

CVE-2022-31606

Weakness Enumeration

Related Identifiers

Affected Products

References · 8