NVIDIA GPU Display Driver for Linux Vulnerability Affects User Security
CVE-2022-31615

5.5MEDIUM

Key Information:

Vendor: Nvidia
Status: Geforce, Workstation, Compute
Vendor: CVE Published:; 18 November 2022

Summary

The NVIDIA GPU Display Driver for Linux has a vulnerability in the kernel mode layer that allows a local user with basic capabilities to exploit a null-pointer dereference. This may result in a denial of service, adversely affecting system reliability and availability. The issue highlights the importance of timely updates and security patches to mitigate risks associated with driver vulnerabilities.

Affected Version(s)

GeForce, Workstation, Compute All versions prior to the August 2022 release

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5383

https://security.gentoo.org/glsa/202310-02

vendor-advisory

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Nov 18, 2022
Vulnerability Reserved
May 24, 2022