CVE-2022-31610
First published: Fri Nov 18 2022(Updated: )
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys), where a local user with basic capabilities can cause an out-of-bounds write, which may lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering.
Credit: psirt@nvidia.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nvidia Gpu Display Driver | >=471.11<473.81 | |
| Nvidia Gpu Display Driver | >=516.25<516.94 | |
| Nvidia Geforce | ||
| NVIDIA Virtual GPU | >=11.0<11.8 | |
| NVIDIA Virtual GPU | >=13.0<13.3 | |
| NVIDIA Virtual GPU | =14.0 | |
| Microsoft Windows | ||
| Nvidia Cloud Gaming Guest | <516.94 | |
| Nvidia Studio | ||
| Nvidia Gpu Display Driver | >=511.09<513.46 | |
| Nvidia Gpu Display Driver | >=451.48<453.64 | |
| Nvidia Gpu Display Driver | >=471.11<472.81 | |
| Nvidia Tesla |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-31610?
CVE-2022-31610 is a vulnerability in the NVIDIA GPU Display Driver for Windows that allows a local user with basic capabilities to cause an out-of-bounds write, leading to potential code execution, denial of service, privilege escalation, information disclosure, or data tampering.
Which software is affected by CVE-2022-31610?
The NVIDIA GPU Display Driver for Windows versions 471.11 to 473.81 and versions 516.25 to 516.94 are affected by CVE-2022-31610.
What is the severity of CVE-2022-31610?
CVE-2022-31610 has a severity score of 7.8, which is considered high.
How can CVE-2022-31610 be exploited?
CVE-2022-31610 can be exploited by a local user with basic capabilities to cause an out-of-bounds write in the NVIDIA GPU Display Driver for Windows.
Is there a fix available for CVE-2022-31610?
Yes, NVIDIA has released a fix for CVE-2022-31610. It is recommended to update to the latest version of the NVIDIA GPU Display Driver for Windows to address this vulnerability.
- collector/nvd-index
- agent/severity
- agent/author
- agent/weakness
- agent/references
- agent/type
- agent/event
- agent/description
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/nvidia
- canonical/nvidia gpu display driver
- version/nvidia gpu display driver/471.11
- version/nvidia gpu display driver/516.25
- canonical/nvidia geforce
- canonical/nvidia virtual gpu
- version/nvidia virtual gpu/11.0
- version/nvidia virtual gpu/13.0
- version/nvidia virtual gpu/14.0
- vendor/microsoft
- canonical/microsoft windows
- canonical/nvidia cloud gaming guest
- canonical/nvidia studio
- version/nvidia gpu display driver/511.09
- version/nvidia gpu display driver/451.48
- canonical/nvidia tesla