CVE-2022-21814
Published Feb 7, 2022
Last updated a year ago
Overview
- Description
- NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel driver package, where improper handling of insufficient permissions or privileges may allow an unprivileged local user limited write access to protected memory, which can lead to denial of service.
- Source
- psirt@nvidia.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 6.1
- Impact score
- 4.2
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 3.6
- Impact score
- 4.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:N/I:P/A:P
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:nvidia:geforce:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "24DE5CC2-3787-4605-8EFA-77590E36E960"
},
{
"criteria": "cpe:2.3:a:nvidia:gpu_display_driver:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C37AC285-221B-474F-8B3F-9DD7C586EB43"
},
{
"criteria": "cpe:2.3:a:nvidia:nvs:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "333646B0-AAD5-4DD7-8940-6334D0A8E77C"
},
{
"criteria": "cpe:2.3:a:nvidia:quadro:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A1DB9FB5-E115-4E96-98F8-3FAFAC120E98"
},
{
"criteria": "cpe:2.3:a:nvidia:rtx:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "08C63EA1-8719-4F5C-922A-C77ED4CEF7C7"
},
{
"criteria": "cpe:2.3:a:nvidia:tesla:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D135086F-CA5E-4242-ACBA-C3AC82F4BE03"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:linux:linux_kernel:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "8BA79AC0-A0CC-4EE6-AEF5-9B8C8EA2C9F1"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]