Vulnerability Description
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where the product receives input or data, but does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly, which may lead to denial of service or data tampering.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nvidia | Gpu Display Driver | - |
| Nvidia | Virtual Gpu | >= 11.0, < 11.8 |
| Microsoft | Windows | - |
Related Weaknesses (CWE)
References
- https://nvidia.custhelp.com/app/answers/detail/a_id/5353PatchVendor Advisory
- https://nvidia.custhelp.com/app/answers/detail/a_id/5353PatchVendor Advisory
FAQ
What is CVE-2022-28186?
CVE-2022-28186 is a vulnerability with a CVSS score of 6.1 (MEDIUM). NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where the product receives input or data, but does not validate or inc...
How severe is CVE-2022-28186?
CVE-2022-28186 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2022-28186?
Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Gpu Display Driver, Nvidia Virtual Gpu, Microsoft Windows.