PT-2022-2602 · Nvidia+1 · Nvidia Gpu Display Driver+1

Piotr Bania

Published

2022-03-30

Updated

2023-10-13

CVE-2022-28181

CVSS v3.1

9.9

Critical

Vector

AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions NVIDIA GPU Display Driver for Windows and Linux (affected versions not specified)

Description The NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer, where an unprivileged regular user on the network can cause an out-of-bounds write through a specially crafted shader. This may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering. The scope of the impact may extend to other components.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

DoS

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

BDU:2022-03060

CVE-2022-28181

MGASA-2022-0197

MGASA-2022-0198

Affected Products

Debian

Nvidia Gpu Display Driver

PT-2022-2602 · Nvidia+1 · Nvidia Gpu Display Driver+1

CVE-2022-28181

Weakness Enumeration

Related Identifiers

Affected Products

References · 22