NVIDIA GPU Driver Vulnerability in Windows Display System
CVE-2022-34683

5.5MEDIUM

Key Information:

Vendor: Nvidia
Status: Vgpu Software (guest Driver) - Windows, Nvidia Cloud Gaming (guest Driver)
Vendor: CVE Published:; 30 December 2022

Badges

👾 Exploit Exists

Summary

The NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys), specifically related to the handler for DxgkDdiEscape. This flaw allows for a null-pointer dereference, potentially leading to a denial of service, which could disrupt system operations and impact overall user experience.

Affected Version(s)

vGPU software (guest driver) - Windows, NVIDIA Cloud Gaming (guest driver) All versions prior to and including 14.2, 13.4, and 11.9, and all versions prior to the November 2022 release

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5415

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

🟡
Public PoC available
Jan 13, 2023
👾
Exploit known to exist
Jan 13, 2023
Vulnerability published
Dec 30, 2022
Vulnerability Reserved
Jun 27, 2022