CVE-2022-42264

HIGH7.1/ 10.0
Share:
Published: December 30, 2022 at 11:15 PM
Modified: November 21, 2024 at 07:24 AM
Source: psirt@nvidia.com

Vulnerability Description

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where an unprivileged regular user can cause the use of an out-of-range pointer offset, which may lead to data tampering, data loss, information disclosure, or denial of service.

CVSS Metrics

Base Score
7.1
Severity
HIGH
Vector String
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Weaknesses (CWE)

CWE-823
Source: psirt@nvidia.com
CWE-119
Source: nvd@nist.gov

References & Intelligence

https://nvidia.custhelp.com/app/answers/detail/a_id/5415
Source: psirt@nvidia.com
Vendor Advisory
https://security.gentoo.org/glsa/202310-02
Source: psirt@nvidia.com
Third Party Advisory
https://nvidia.custhelp.com/app/answers/detail/a_id/5415
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
https://security.gentoo.org/glsa/202310-02
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory

Related Resources

Browse CVE Database
Search 294,000+ vulnerabilities
CVEs from 2022
View all vulnerabilities this year
CWE Database
Explore weakness categories
Security Writeups
Learn from real-world examples
About 4nuxd
Cybersecurity research & tools
Homepage
Explore more security resources