CVE-2022-42266

NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where an unprivileged regular user can cause exposure of sensitive information to an actor that is not explicitly authorized to have access to that information, which may lead to limited information disclosure.

Published: Dec 31, 2022
Updated: Apr 14, 2023
CVE: CVE-2022-42266
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 3.3
AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
nvidia / virtual_gpu	-	11.11
nvidia / virtual_gpu	13.0	13.6
nvidia / virtual_gpu	14.0	14.4
nvidia / cloud_gaming	-	527.27

https://nvidia.custhelp.com/app/answers/detail/a_id/5415

Vulnerability Database

289,871

CVE-2022-42266