CVE-2022-31616

Published Nov 19, 2022

Last updated 2 years ago

CVSS high 7.1

Overview

Description: NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where a local user with basic capabilities can cause an out-of-bounds read, which may lead to denial of service, or information disclosure.
Source: psirt@nvidia.com
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.1
Impact score: 5.2
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Severity: HIGH

Weaknesses

nvd@nist.gov: CWE-125
psirt@nvidia.com: CWE-20

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9E31C0C2-5C06-4E5E-9106-1ABE98D37C13",
            "versionEndExcluding": "473.81",
            "versionStartIncluding": "471.11"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "337FAC23-CA17-4B2C-AFC0-F3FD8493FACD",
            "versionEndExcluding": "516.94",
            "versionStartIncluding": "516.25"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:nvidia:geforce:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6B30520A-D378-4CC8-812D-3B443740D6E3"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "45F338C5-245D-4D10-9B48-B56B7094F167",
            "versionEndExcluding": "11.8",
            "versionStartIncluding": "11.0"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "98C8F13F-2F8F-4BAE-B971-582084B93D58",
            "versionEndExcluding": "13.3",
            "versionStartIncluding": "13.0"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:virtual_gpu:14.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3CB2F728-3BFD-418D-AC29-A4165D1E7CA6"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nvidia:cloud_gaming_guest:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D619D0D6-04FF-4C1E-84BC-BF44C3328451",
            "versionEndExcluding": "516.94"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "337FAC23-CA17-4B2C-AFC0-F3FD8493FACD",
            "versionEndExcluding": "516.94",
            "versionStartIncluding": "516.25"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nvidia:studio:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C1ED5DE2-7677-4F38-8177-3BF0B3D03A09"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9E31C0C2-5C06-4E5E-9106-1ABE98D37C13",
            "versionEndExcluding": "473.81",
            "versionStartIncluding": "471.11"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "094B9003-EEC7-46DD-AEC2-F2BCB0F8DE88",
            "versionEndExcluding": "513.46",
            "versionStartIncluding": "511.09"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "337FAC23-CA17-4B2C-AFC0-F3FD8493FACD",
            "versionEndExcluding": "516.94",
            "versionStartIncluding": "516.25"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nvidia:studio:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C1ED5DE2-7677-4F38-8177-3BF0B3D03A09"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE6F7210-C895-478D-8155-85335EFEAE4F",
            "versionEndExcluding": "453.64",
            "versionStartIncluding": "451.48"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D66D8563-40B2-4B35-BC8B-C2905C9D4FC8",
            "versionEndExcluding": "472.81",
            "versionStartIncluding": "471.11"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "094B9003-EEC7-46DD-AEC2-F2BCB0F8DE88",
            "versionEndExcluding": "513.46",
            "versionStartIncluding": "511.09"
          },
          {
            "criteria": "cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:windows:*:*",
            "vulnerable": true,
            "matchCriteriaId": "337FAC23-CA17-4B2C-AFC0-F3FD8493FACD",
            "versionEndExcluding": "516.94",
            "versionStartIncluding": "516.25"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:nvidia:tesla:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "75C6DE26-88F2-428E-B761-754BD027E015"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References