Vulnerabilities > Nvidia > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-12-30 CVE-2022-42259 Integer Overflow or Wraparound vulnerability in multiple products
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to denial of service.
local
low complexity
nvidia debian CWE-190
5.5
2022-11-19 CVE-2022-31613 NULL Pointer Dereference vulnerability in Nvidia Cloud Gaming Guest, GPU Display Driver and Virtual GPU
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer, where any local user can cause a null-pointer dereference, which may lead to a kernel panic.
local
low complexity
nvidia CWE-476
6.5
2022-11-19 CVE-2022-31615 NULL Pointer Dereference vulnerability in Nvidia GPU Display Driver
NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where a local user with basic capabilities can cause a null-pointer dereference, which may lead to denial of service.
local
low complexity
nvidia CWE-476
5.5
2022-11-19 CVE-2022-34665 NULL Pointer Dereference vulnerability in Nvidia Cloud Gaming Guest, GPU Display Driver and Virtual GPU
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a local user with basic capabilities can cause a null-pointer dereference, which may lead to denial of service.
local
low complexity
nvidia CWE-476
6.5
2022-11-19 CVE-2022-34667 Out-of-bounds Write vulnerability in Nvidia Cuda Toolkit
NVIDIA CUDA Toolkit SDK contains a stack-based buffer overflow vulnerability in cuobjdump, where an unprivileged remote attacker could exploit this buffer overflow condition by persuading a local user to download a specially crafted corrupted file and execute cuobjdump against it locally, which may lead to a limited denial of service and some loss of data integrity for the local user.
local
low complexity
nvidia CWE-787
4.4
2022-11-10 CVE-2022-34666 NULL Pointer Dereference vulnerability in Nvidia Cloud Gaming and Virtual GPU
NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a local user with basic capabilities can cause a null-pointer dereference, which may lead to denial of service.
local
low complexity
nvidia CWE-476
5.5
2022-07-04 CVE-2022-31599 Access of Uninitialized Pointer vulnerability in Nvidia DGX A100 Firmware
NVIDIA DGX A100 contains a vulnerability in SBIOS in the Ofbd, where a local user with elevated privileges can cause access to an uninitialized pointer, which may lead to code execution, escalation of privileges, denial of service, and information disclosure.
local
low complexity
nvidia CWE-824
4.6
2022-07-04 CVE-2022-31600 Integer Overflow or Wraparound vulnerability in Nvidia DGX A100 Firmware
NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmmCore, where a user with high privileges can chain another vulnerability to this vulnerability, causing an integer overflow, possibly leading to code execution, escalation of privileges, denial of service, compromised integrity, and information disclosure.
local
low complexity
nvidia CWE-190
4.6
2022-07-04 CVE-2022-31601 Out-of-bounds Write vulnerability in Nvidia DGX A100 Firmware
NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmbiosPei, which may allow a highly privileged local attacker to cause an out-of-bounds write, which may lead to code execution, denial of service, compromised integrity, and information disclosure.
local
low complexity
nvidia CWE-787
4.6
2022-07-04 CVE-2022-31602 Out-of-bounds Write vulnerability in Nvidia DGX A100 Firmware
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with elevated privileges and a preconditioned heap can exploit an out-of-bounds write vulnerability, which may lead to code execution, denial of service, data integrity impact, and information disclosure.
local
nvidia CWE-787
4.4