CVE-2022-34684

CWE-125Out-of-bounds ReadCWE-1934 documents4 sources
Severity
7.1HIGH
EPSS
0.1%
top 70.56%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Nvidia Cloud GamingNvidia GPU Display DriverNvidia Virtual GPU
Timeline
PublishedDec 30

Description

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an off-by-one error may lead to data tampering or information disclosure.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:LExploitability: 1.8 | Impact: 3.4

Affected Packages7 packages

NVDnvidia/gpu_display_driver510510.108.03+1
Debiannvidia-graphics-drivers< 510.108.03-1+2
Debiannvidia-graphics-drivers-tesla< 510.108.03-1
Debiannvidia-open-gpu-kernel-modules< 515.86.01-1+2
Debiannvidia-graphics-drivers-tesla-470< 470.161.03-1+1

🔴Vulnerability Details

2
OSV
CVE-2022-34684: NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia2022-12-30
CVEList
CVE-2022-34684: NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia2022-12-30

📋Vendor Advisories

1
Debian
CVE-2022-34684: nvidia-graphics-drivers - NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode ...2022
CVE-2022-34684 (HIGH CVSS 7.1) | NVIDIA GPU Display Driver for Linux | cvebase.io