CVE-2022-31608

Published Nov 19, 2022

Last updated a year ago

CVSS high 7.8

Overview

Description: NVIDIA GPU Display Driver for Linux contains a vulnerability in an optional D-Bus configuration file, where a local user with basic capabilities can impact protected D-Bus endpoints, which may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Source: psirt@nvidia.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

Weaknesses

nvd@nist.gov: CWE-281
psirt@nvidia.com: CWE-281

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C1777FEA-7B6B-4629-BFFD-E45492C96D18",
            "versionEndExcluding": "390.154",
            "versionStartIncluding": "390"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*",
            "vulnerable": true,
            "matchCriteriaId": "677332FE-B818-48A9-82EE-474703AE1D81",
            "versionEndExcluding": "470.141.03",
            "versionStartIncluding": "470"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C8E67FE7-2A7D-4FC0-A623-A981FD5776AB",
            "versionEndExcluding": "510.85.02",
            "versionStartIncluding": "510"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8603E59F-1C4A-4A15-B28B-1665D5AE5B58",
            "versionEndExcluding": "515.65.01",
            "versionStartIncluding": "515"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:nvidia:geforce:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6B30520A-D378-4CC8-812D-3B443740D6E3"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C1777FEA-7B6B-4629-BFFD-E45492C96D18",
            "versionEndExcluding": "390.154",
            "versionStartIncluding": "390"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*",
            "vulnerable": true,
            "matchCriteriaId": "677332FE-B818-48A9-82EE-474703AE1D81",
            "versionEndExcluding": "470.141.03",
            "versionStartIncluding": "470"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C8E67FE7-2A7D-4FC0-A623-A981FD5776AB",
            "versionEndExcluding": "510.85.02",
            "versionStartIncluding": "510"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8603E59F-1C4A-4A15-B28B-1665D5AE5B58",
            "versionEndExcluding": "515.65.01",
            "versionStartIncluding": "515"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nvidia:rtx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "08C63EA1-8719-4F5C-922A-C77ED4CEF7C7"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6A5C4A60-A16B-4BDA-BFDF-482A254F237F",
            "versionEndExcluding": "450.203.03",
            "versionStartIncluding": "450"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*",
            "vulnerable": true,
            "matchCriteriaId": "677332FE-B818-48A9-82EE-474703AE1D81",
            "versionEndExcluding": "470.141.03",
            "versionStartIncluding": "470"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C8E67FE7-2A7D-4FC0-A623-A981FD5776AB",
            "versionEndExcluding": "510.85.02",
            "versionStartIncluding": "510"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8603E59F-1C4A-4A15-B28B-1665D5AE5B58",
            "versionEndExcluding": "515.65.01",
            "versionStartIncluding": "515"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:nvidia:tesla:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "75C6DE26-88F2-428E-B761-754BD027E015"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References