Vulnerabilities > CVE-2022-28184 - Unspecified vulnerability in Nvidia GPU Display Driver and Virtual GPU

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

nvidia

NVD

Published: 2022-05-17

Updated: 2023-10-15

Summary

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where an unprivileged regular user can access administrator- privileged registers, which may lead to denial of service, information disclosure, and data tampering.

Vulnerable Configurations

Part	Description	Count
Application	Nvidia Nvidia GPU Display Driver - Nvidia Virtual GPU 13.0 Nvidia Virtual GPU 13.1 Nvidia Virtual GPU 13.2 Nvidia Virtual GPU 11.0 Nvidia Virtual GPU 11.6 Nvidia Virtual GPU 11.7 Nvidia Virtual GPU 14.0	9

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5353
https://security.gentoo.org/glsa/202310-02