CVE-2022-31617
First published: Fri Nov 18 2022(Updated: )
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys), where a local user with basic capabilities can cause an out-of-bounds read, which may lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering.
Credit: psirt@nvidia.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nvidia Gpu Display Driver | >=471.11<473.81 | |
| Nvidia Gpu Display Driver | >=516.25<516.94 | |
| Nvidia Geforce | ||
| NVIDIA Virtual GPU | >=11.0<11.8 | |
| NVIDIA Virtual GPU | >=13.0<13.3 | |
| NVIDIA Virtual GPU | =14.0 | |
| Microsoft Windows | ||
| Nvidia Cloud Gaming Guest | <516.94 | |
| Nvidia Studio | ||
| Nvidia Gpu Display Driver | >=511.09<513.46 | |
| Nvidia Gpu Display Driver | >=451.48<453.64 | |
| Nvidia Gpu Display Driver | >=471.11<472.81 | |
| Nvidia Tesla |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-31617?
CVE-2022-31617 is a vulnerability in the NVIDIA GPU Display Driver for Windows that allows a local user to cause an out-of-bounds read, leading to various security issues.
How does CVE-2022-31617 affect NVIDIA GPU Display Driver for Windows?
CVE-2022-31617 affects the kernel mode layer (nvlddmkm.sys) of the NVIDIA GPU Display Driver for Windows, potentially leading to code execution, denial of service, escalation of privileges, information disclosure, or data tampering.
Which versions of NVIDIA GPU Display Driver for Windows are affected by CVE-2022-31617?
Versions between 471.11 and 473.81 of the NVIDIA GPU Display Driver for Windows are affected by CVE-2022-31617.
How severe is CVE-2022-31617?
CVE-2022-31617 has a severity score of 7.8 (high).
How can I fix CVE-2022-31617?
To fix CVE-2022-31617, update your NVIDIA GPU Display Driver for Windows to a version higher than 473.81.
- collector/nvd-index
- agent/weakness
- agent/references
- agent/author
- agent/severity
- agent/type
- agent/event
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/remedy
- agent/tags
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/nvidia
- canonical/nvidia gpu display driver
- version/nvidia gpu display driver/471.11
- version/nvidia gpu display driver/516.25
- canonical/nvidia geforce
- canonical/nvidia virtual gpu
- version/nvidia virtual gpu/11.0
- version/nvidia virtual gpu/13.0
- version/nvidia virtual gpu/14.0
- vendor/microsoft
- canonical/microsoft windows
- canonical/nvidia cloud gaming guest
- canonical/nvidia studio
- version/nvidia gpu display driver/511.09
- version/nvidia gpu display driver/451.48
- canonical/nvidia tesla