CVSS: 5.5EPSS: 0%CPEs: 10EXPL: 0CVE-2023-0190 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2023-0190
22 Apr 2023 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where a NULL pointer dereference may lead to denial of service. Multiple vulnerabilities have been discovered in NVIDIA Drivers, the worst of which could result in root privilege escalation. Versions greater than or equal to 470.182.03 are affected. • https://nvidia.custhelp.com/app/answers/detail/a_id/5452 • CWE-476: NULL Pointer Dereference •
CVSS: 8.8EPSS: 0%CPEs: 23EXPL: 0CVE-2023-0184 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2023-0184
22 Apr 2023 — NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer handler which may lead to denial of service, escalation of privileges, information disclosure, and data tampering. Multiple vulnerabilities have been discovered in NVIDIA Drivers, the worst of which could result in root privilege escalation. Versions greater than or equal to 470.182.03 are affected. • https://nvidia.custhelp.com/app/answers/detail/a_id/5452 • CWE-822: Untrusted Pointer Dereference •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2022-42292
https://notcve.org/view.php?id=CVE-2022-42292
07 Feb 2023 — NVIDIA GeForce Experience contains a vulnerability in the NVContainer component, where a user without administrator privileges can create a symbolic link to a file that requires elevated privileges to write to or modify, which may lead to denial of service, escalation of privilege or limited data tampering. • https://nvidia.custhelp.com/app/answers/detail/a_id/5384 • CWE-59: Improper Link Resolution Before File Access ('Link Following') •
CVSS: 7.3EPSS: 0%CPEs: 2EXPL: 0CVE-2022-31611
https://notcve.org/view.php?id=CVE-2022-31611
07 Feb 2023 — NVIDIA GeForce Experience contains an uncontrolled search path vulnerability in all its client installers, where an attacker with user level privileges may cause the installer to load an arbitrary DLL when the installer is launched. A successful exploit of this vulnerability could lead to escalation of privileges and code execution. • https://nvidia.custhelp.com/app/answers/detail/a_id/5384 • CWE-427: Uncontrolled Search Path Element •
CVSS: 8.2EPSS: 0%CPEs: 2EXPL: 0CVE-2022-42291
https://notcve.org/view.php?id=CVE-2022-42291
07 Feb 2023 — NVIDIA GeForce Experience contains a vulnerability in the installer, where a user installing the NVIDIA GeForce Experience software may inadvertently delete data from a linked location, which may lead to data tampering. An attacker does not have explicit control over the exploitation of this vulnerability, which requires the user to explicitly launch the installer from the compromised directory. • https://nvidia.custhelp.com/app/answers/detail/a_id/5384 • CWE-59: Improper Link Resolution Before File Access ('Link Following') CWE-1386: Insecure Operation on Windows Junction / Mount Point •
CVSS: 5.5EPSS: 0%CPEs: 28EXPL: 0CVE-2022-34680 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-34680
30 Dec 2022 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an integer truncation can lead to an out-of-bounds read, which may lead to denial of service. NVIDIA GPU Display Driver para Linux contiene una vulnerabilidad en el controlador de capa del modo kernel, donde un truncamiento de números enteros puede provocar una lectura fuera de los límites, lo que puede provocar una Denegación de Servicio (DoS). Multiple vulnerabilities have been discovered in NVIDIA Drivers... • https://lists.debian.org/debian-lts-announce/2023/05/msg00010.html • CWE-197: Numeric Truncation Error CWE-681: Incorrect Conversion between Numeric Types •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2022-42254 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-42254
30 Dec 2022 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an out-of-bounds array access may lead to denial of service, data tampering, or information disclosure. NVIDIA GPU Display Driver para Linux contiene una vulnerabilidad en la capa del modo kernel (nvidia.ko), donde un acceso a la matriz fuera de los límites puede provocar Denegación de Servicio (DoS), manipulación de datos o divulgación de información. Multiple vulnerabilities have been discovered in NVI... • https://nvidia.custhelp.com/app/answers/detail/a_id/5415 • CWE-125: Out-of-bounds Read CWE-129: Improper Validation of Array Index •
CVSS: 7.3EPSS: 0%CPEs: 28EXPL: 0CVE-2022-42257 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-42257
30 Dec 2022 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to information disclosure, data tampering or denial of service. NVIDIA GPU Display Driver para Linux contiene una vulnerabilidad en la capa del modo kernel (nvidia.ko), donde un desbordamiento de enteros puede provocar la divulgación de información, la manipulación de datos o la Denegación de Servicio (DoS). Multiple vulnerabilities have been discovered in NVIDIA Drivers, the... • https://lists.debian.org/debian-lts-announce/2023/05/msg00010.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 7.3EPSS: 0%CPEs: 28EXPL: 0CVE-2022-42258 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-42258
30 Dec 2022 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to denial of service, data tampering, or information disclosure. NVIDIA GPU Display Driver para Linux contiene una vulnerabilidad en la capa del modo kernel (nvidia.ko), donde un desbordamiento de enteros puede provocar Denegación de Servicio (DoS), manipulación de datos o divulgación de información. Multiple vulnerabilities have been discovered in NVIDIA Drivers, the worst o... • https://lists.debian.org/debian-lts-announce/2023/05/msg00010.html • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.5EPSS: 0%CPEs: 28EXPL: 0CVE-2022-42259 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-42259
30 Dec 2022 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer (nvidia.ko), where an integer overflow may lead to denial of service. NVIDIA GPU Display Driver para Linux contiene una vulnerabilidad en la capa del modo kernel (nvidia.ko), donde un desbordamiento de enteros puede provocar una Denegación de Servicio (DoS). Multiple vulnerabilities have been discovered in NVIDIA Drivers, the worst of which could result in root privilege escalation. Versions greater than or equal to 470.18... • https://lists.debian.org/debian-lts-announce/2023/05/msg00010.html • CWE-190: Integer Overflow or Wraparound •