Out-of-Bounds Read Vulnerability in NVIDIA GPU Display Driver for Windows and Linux
CVE-2022-28183

7.7HIGH

Key Information:

Vendor: Nvidia
Status: Nvidia Gpu Display Driver
Vendor: CVE Published:; 17 May 2022

Summary

The NVIDIA GPU Display Driver for both Windows and Linux exhibits a vulnerability in the kernel mode layer that allows an unprivileged regular user to trigger an out-of-bounds read. This flaw can potentially lead to denial of service conditions or unauthorized information disclosure, impacting system integrity and user security.

Affected Version(s)

NVIDIA GPU Display Driver All GPU Driver versions for Windows and Linux

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5353

https://security.gentoo.org/glsa/202310-02

vendor-advisory

CVSS V3.1

Score:

7.7

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
May 17, 2022
Vulnerability Reserved
Mar 30, 2022