Vulnerabilities > Nvidia > High

DATE CVE VULNERABILITY TITLE RISK
2022-11-19 CVE-2022-31616 Out-of-bounds Read vulnerability in Nvidia Cloud Gaming Guest, GPU Display Driver and Virtual GPU
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where a local user with basic capabilities can cause an out-of-bounds read, which may lead to denial of service, or information disclosure.
local
low complexity
nvidia CWE-125
7.1
2022-11-19 CVE-2022-31617 Out-of-bounds Read vulnerability in Nvidia Cloud Gaming Guest, GPU Display Driver and Virtual GPU
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys), where a local user with basic capabilities can cause an out-of-bounds read, which may lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering.
local
low complexity
nvidia CWE-125
7.8
2022-08-05 CVE-2022-31614 Double Free vulnerability in Nvidia Virtual GPU
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin) where it may double-free some resources.
local
low complexity
nvidia CWE-415
7.8
2022-07-04 CVE-2022-31600 Integer Overflow or Wraparound vulnerability in Nvidia DGX A100 Firmware
NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmmCore, where a user with high privileges can chain another vulnerability to this vulnerability, causing an integer overflow, possibly leading to code execution, escalation of privileges, denial of service, compromised integrity, and information disclosure.
local
low complexity
nvidia CWE-190
8.2
2022-07-02 CVE-2022-28200 Out-of-bounds Write vulnerability in Nvidia DGX A100 Firmware
NVIDIA DGX A100 contains a vulnerability in SBIOS in the BiosCfgTool, where a local user with elevated privileges can read and write beyond intended bounds in SMRAM, which may lead to code execution, escalation of privileges, denial of service, and information disclosure.
local
low complexity
nvidia CWE-787
8.2
2022-05-17 CVE-2022-28183 Out-of-bounds Read vulnerability in Nvidia GPU Display Driver and Virtual GPU
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where an unprivileged regular user can cause an out-of-bounds read, which may lead to denial of service and information disclosure.
local
low complexity
nvidia CWE-125
7.1
2022-05-17 CVE-2022-28184 Unspecified vulnerability in Nvidia GPU Display Driver and Virtual GPU
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where an unprivileged regular user can access administrator- privileged registers, which may lead to denial of service, information disclosure, and data tampering.
local
low complexity
nvidia
7.8
2022-05-17 CVE-2022-28185 Out-of-bounds Write vulnerability in Nvidia Virtual GPU
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the ECC layer, where an unprivileged regular user can cause an out-of-bounds write, which may lead to denial of service and data tampering.
local
low complexity
nvidia CWE-787
7.1
2022-03-11 CVE-2022-21819 Incorrect Permission Assignment for Critical Resource vulnerability in Nvidia Jetson Linux
NVIDIA distributions of Jetson Linux contain a vulnerability where an error in the IOMMU configuration may allow an unprivileged attacker with physical access to the board direct read/write access to the entire system address space through the PCI bus.
low complexity
nvidia CWE-732
7.6
2022-01-18 CVE-2021-34401 Unspecified vulnerability in Nvidia Shield Experience
NVIDIA Linux kernel distributions contain a vulnerability in nvmap NVGPU_IOCTL_CHANNEL_SET_ERROR_NOTIFIER, where improper access control may lead to code execution, compromised integrity, or denial of service.
local
low complexity
nvidia
7.8