What is the severity of CVE-2017-0322?

CVE-2017-0322 has been classified as a high severity vulnerability due to potential denial of service and privilege escalation risks.

How do I fix CVE-2017-0322?

To fix CVE-2017-0322, update the NVIDIA Windows GPU Display Driver to the latest version that addresses this vulnerability.

What versions are affected by CVE-2017-0322?

All versions of the NVIDIA Windows GPU Display Driver are affected by CVE-2017-0322.

What causes CVE-2017-0322?

CVE-2017-0322 is caused by improper validation of user-supplied values in the kernel mode layer handler of the NVIDIA driver.

Can CVE-2017-0322 lead to remote exploitation?

CVE-2017-0322 does not directly lead to remote exploitation, but it may allow local attackers to escalate privileges or cause denial of service.

Vulnerability/
CVE-2017-0322

high

7.8

CWE

129

15/2/2017

20/4/2025

CVE-2017-0322: Out-of-bounds Read

First published: Wed Feb 15 2017(Updated: )

All versions of NVIDIA Windows GPU Display Driver contain a vulnerability in the kernel mode layer (nvlddmkm.sys) handler where a value passed from a user to the driver is not correctly validated and used as the index to an array, leading to denial of service or potential escalation of privileges.

Credit: psirt@nvidia.com

Affected Software	Affected Version	How to fix
NVIDIA GPU kernel driver
Microsoft Windows Operating System
All of
NVIDIA GPU kernel driver
Microsoft Windows Operating System

Never miss a vulnerability like this again

Reference Links

http://nvidia.custhelp.com/app/answers/detail/a_id/4398

Frequently Asked Questions

What is the severity of CVE-2017-0322?
CVE-2017-0322 has been classified as a high severity vulnerability due to potential denial of service and privilege escalation risks.
How do I fix CVE-2017-0322?
To fix CVE-2017-0322, update the NVIDIA Windows GPU Display Driver to the latest version that addresses this vulnerability.
What versions are affected by CVE-2017-0322?
All versions of the NVIDIA Windows GPU Display Driver are affected by CVE-2017-0322.
What causes CVE-2017-0322?
CVE-2017-0322 is caused by improper validation of user-supplied values in the kernel mode layer handler of the NVIDIA driver.
Can CVE-2017-0322 lead to remote exploitation?
CVE-2017-0322 does not directly lead to remote exploitation, but it may allow local attackers to escalate privileges or cause denial of service.

agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/weakness
agent/author
agent/references
agent/first-publish-date
agent/description
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/last-modified-date
agent/source
agent/tags
agent/softwarecombine
agent/event
vendor/nvidia
canonical/nvidia gpu kernel driver
vendor/microsoft
canonical/microsoft windows operating system

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.