More issues
CVE-2022-31608 The NVIDIA GPU Display Driver has a vulnerability in D-Bus that a local user with basic capabilities can impact protected D-Bus endpoints, which may lead to code execution, denial of service, or escalation of privilege.
Note that this issue does not allow remote code execution or system level D-Bus messages to be sent. You must be on the host system to exploit it. This vulnerability affects all Ubuntu 18.04 and Debian 9 users. END UPDATE This issue was fixed in the Linux 4.18.
2 min read
CVE-2022-31612 An NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler for DxgkDdiEscape where a local user with basic capabilities can cause an out-of-bounds read which may lead to a system crash or a leak of information.
This issue is rated as critical due to the possibility of remote code execution. End users running virtualization software that emulates hardware, such as Microsoft Hyper-V, may be at risk due to the fact that many virtualization vendors rely on the kernel mode layer of the graphics driver to function.
2 min read
CVE-2022-31606 The NVIDIA GPU Display Driver has a vulnerability in the DxgkDdiEscape kernel mode handler that can allow an attacker with user capabilities to crash the system.
This issue has been assigned CVE-2018-12932. In most cases, an application does not have any reason to trigger this issue, and an attacker would have to be in possession of the system's kernel memory in order to take advantage of it. This vulnerability is considered low risk, because it requires
3 min read
CVE-2022-31610 An issue has been found in the NVIDIA GPU Display Driver. An attacker with local user access can cause an out-of-bounds write, which may lead to code execution or denial of service.
This issue affects Windows 7 and later, Windows Server 2008 and later, Windows Vista and later, and MacOS Sierra and later. An attacker can exploit this issue by persuading a user to visit a malicious webpage or by convincing a user to open a malicious file, or by convincing a
1 min read
Subscribe to CVE.news
Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe