CVE-2022-42267

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions NVIDIA GPU Display Driver for Windows (affected versions not specified) NVIDIA GeForce, Studio, RTX/Quadro, NVS, and Tesla (affected versions not specified)

Description The issue is related to insufficient data authentication, which may allow an attacker to gain unauthorized access to protected information, elevate privileges, execute arbitrary code, or cause a denial of service. A regular user can cause an out-of-bounds read, potentially leading to code execution, denial of service, escalation of privileges, information disclosure, or data tampering.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Out of bounds Read

Insufficient Verification of Data Authenticity

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125CWE-345

Related Identifiers

BDU:2023-01116

CVE-2022-42267

Affected Products

Nvidia Gpu Display Driver

Nvidia Geforce

Nvidia Nvs

Nvidia Rtx/Quadro

Nvidia Studio

Nvidia Tesla

CVE-2022-42267

Weakness Enumeration

Related Identifiers

Affected Products

References · 4