CVE-2022-21813

2022-02-0700:00:00

CWE-284

nvidia

www.cve.org

cve-2022-21813

nvidia

linux

kernel driver

vulnerability

insufficient permissions

privileges

unprivileged

local user

denial of service

CVSS3

6.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

AI Score

6.2

Confidence

High

EPSS

Percentile

5.1%

JSON

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel driver, where improper handling of insufficient permissions or privileges may allow an unprivileged local user limited write access to protected memory, which can lead to denial of service.

CNA Affected

[
  {
    "vendor": "NVIDIA",
    "product": "NVIDIA GPU Display Driver",
    "versions": [
      {
        "version": "All GPU Driver versions for Linux",
        "status": "affected"
      }
    ]
  }
]