CVE-2022-28182 Information

Description

NVIDIA GPU Display Driver for Windows contains a vulnerability in the DirectX11 user mode driver (nvwgf2um/x.dll) where an unauthorized attacker on the network can cause an out-of-bounds write through a specially crafted shader which may lead to code execution to cause denial of service escalation of privileges information disclosure and data tampering. The scope of the impact may extend to other components.

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Reference

https://nvidia.custhelp.com/app/answers/detail/a_id/5353

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

CHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

8.5