CVE-2022-21817
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
NVIDIA Omniverse Launcher contains a Cross-Origin Resource Sharing (CORS) vulnerability which can allow an unprivileged remote attacker, if they can get user to browse malicious site, to acquire access tokens allowing them to access resources in other security domains, which may lead to code execution, escalation of privileges, and impact to confidentiality and integrity.
NVIDIA Omniverse Launcher contiene una vulnerabilidad de tipo Cross-Origin Resource Sharing (CORS) que puede permitir a un atacante remoto no privilegiado, si consigue que el usuario navegue por un sitio malicioso, adquirir tokens de acceso que le permitan acceder a recursos en otros dominios de seguridad, lo que puede conllevar a una ejecución de código, una escalada de privilegios y impactos en la confidencialidad e integridad
CVSS Scores
SSVC
- Decision:-
Timeline
- 2021-12-10 CVE Reserved
- 2022-02-02 CVE Published
- 2024-08-03 CVE Updated
- 2024-10-18 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://nvidia.custhelp.com/app/answers/detail/a_id/5318 | 2023-07-24 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Nvidia Search vendor "Nvidia" | Omniverse Launcher Search vendor "Nvidia" for product "Omniverse Launcher" | < 1.5.2 Search vendor "Nvidia" for product "Omniverse Launcher" and version " < 1.5.2" | - |
Affected
| in | Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | - | - |
Safe
|
| Nvidia Search vendor "Nvidia" | Omniverse Launcher Search vendor "Nvidia" for product "Omniverse Launcher" | < 1.5.2 Search vendor "Nvidia" for product "Omniverse Launcher" and version " < 1.5.2" | - |
Affected
| in | Microsoft Search vendor "Microsoft" | Windows Search vendor "Microsoft" for product "Windows" | - | - |
Safe
|