CVE-2022-34666

CWE-476NULL Pointer Dereference5 documents5 sources
Severity
5.5MEDIUM
EPSS
0.1%
top 78.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Nvidia Cloud GamingNvidia Virtual GPU
Timeline
PublishedNov 10

Description

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a local user with basic capabilities can cause a null-pointer dereference, which may lead to denial of service.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:HExploitability: 2.0 | Impact: 4.0

Affected Packages7 packages

Debiannvidia-graphics-drivers< 470.141.03-1~deb11u1+3
Debiannvidia-graphics-drivers-tesla-450< 450.203.03-1~deb11u1
Debiannvidia-graphics-drivers-tesla-460< 460.106.00-3
Debiannvidia-graphics-drivers-tesla-470< 470.141.03-1~deb11u1+1
Debiannvidia-graphics-drivers-legacy-390xx< 390.154-1~deb11u1

🔴Vulnerability Details

3
OSV
CVE-2022-34666: NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a local user with basic capabilities can caus2022-11-10
GHSA
GHSA-pq25-x76j-wrfp: NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a local user with basic capabilities can caus2022-11-10
CVEList
CVE-2022-34666: NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a local user with basic capabilities can caus2022-11-10

📋Vendor Advisories

1
Debian
CVE-2022-34666: nvidia-graphics-drivers - NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the ...2022
CVE-2022-34666 (MEDIUM CVSS 5.5) | NVIDIA GPU Display Driver for Windo | cvebase.io