CVE-2022-42268

Severity Score

7.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Omniverse Kit contains a vulnerability in the reference applications Create, Audio2Face, Isaac Sim, View, Code, and Machinima. These applications allow executable Python code to be embedded in Universal Scene Description (USD) files to customize all aspects of a scene. If a user opens a USD file that contains embedded Python code in one of these applications, the embedded Python code automatically runs with the privileges of the user who opened the file. As a result, an unprivileged remote attacker could craft a USD file containing malicious Python code and persuade a local user to open the file, which may lead to information disclosure, data tampering, and denial of service.

Omniverse Kit contiene una vulnerabilidad en las aplicaciones de referencia Create, Audio2Face, Isaac Sim, View, Code y Machinima. Estas aplicaciones permiten incrustar código Python ejecutable en archivos de descripción de escena universal (USD) para personalizar todos los aspectos de una escena. Si un usuario abre un archivo USD que contiene código Python incrustado en una de estas aplicaciones, el código Python incrustado se ejecuta automáticamente con los privilegios del usuario que abrió el archivo. Como resultado, un atacante remoto sin privilegios podría crear un archivo USD que contenga código Python malicioso y persuadir a un usuario local para que abra el archivo, lo que puede provocar la divulgación de información, la manipulación de datos y la denegación de servicio.

*Credits: N/A

CVSS Scores

NISTv3.1 7.8

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2022-10-03 CVE Reserved
2023-01-12 CVE Published
2024-08-03 CVE Updated
2024-08-19 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
CWE-94: Improper Control of Generation of Code ('Code Injection')

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://nvidia.custhelp.com/app/answers/detail/a_id/5418	2023-11-07

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Nvidia Search vendor "Nvidia"		Nvidia Isaac Sim Search vendor "Nvidia" for product "Nvidia Isaac Sim"				< 2022.2.0 Search vendor "Nvidia" for product "Nvidia Isaac Sim" and version " < 2022.2.0"		-		Affected
Nvidia Search vendor "Nvidia"		Omniverse Audio2face Search vendor "Nvidia" for product "Omniverse Audio2face"				< 2022.2 Search vendor "Nvidia" for product "Omniverse Audio2face" and version " < 2022.2"		-		Affected
Nvidia Search vendor "Nvidia"		Omniverse Code Search vendor "Nvidia" for product "Omniverse Code"				< 2022.3.0 Search vendor "Nvidia" for product "Omniverse Code" and version " < 2022.3.0"		-		Affected
Nvidia Search vendor "Nvidia"		Omniverse Create Search vendor "Nvidia" for product "Omniverse Create"				< 2022.3 Search vendor "Nvidia" for product "Omniverse Create" and version " < 2022.3"		-		Affected
Nvidia Search vendor "Nvidia"		Omniverse Machinima Search vendor "Nvidia" for product "Omniverse Machinima"				< 2022.3 Search vendor "Nvidia" for product "Omniverse Machinima" and version " < 2022.3"		-		Affected
Nvidia Search vendor "Nvidia"		Omniverse View Search vendor "Nvidia" for product "Omniverse View"				< 2022.2.1 Search vendor "Nvidia" for product "Omniverse View" and version " < 2022.2.1"		-		Affected