CVE-2022-31606
published 2022-11-19CVE-2022-31606: NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where a failure to properly…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where a failure to properly validate data might allow an attacker with basic user capabilities to cause an out-of-bounds access in kernel mode, which could lead to denial of service, information disclosure, escalation of privileges, or data tampering.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nvidia | cloud_gaming_guest | < 516.94 | 516.94 |
| nvidia | gpu_display_driver | >= 451.48 < 453.64 | 453.64 |
| nvidia | gpu_display_driver | >= 471.11 < 473.81 | 473.81 |
| nvidia | gpu_display_driver | >= 471.11 < 472.81 | 472.81 |
| nvidia | gpu_display_driver | >= 511.09 < 513.46 | 513.46 |
| nvidia | gpu_display_driver | >= 516.25 < 516.94 | 516.94 |
| nvidia | nvidia_cloud_gaming | — | — |
| nvidia | virtual_gpu | — | — |
| nvidia | virtual_gpu | >= 11.0 < 11.8 | 11.8 |
| nvidia | virtual_gpu | >= 13.0 < 13.3 | 13.3 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH