CVE-2022-34681
MEDIUM WAF: Medium
CVSS 5.5
Published: 2022-12-30
CWE-20 CWE-20 CWE-20
NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler, where improper input validation of a display-related data structure may lead to denial of service.
WAF Coverage Analysis
Improper Input Validation
Medium WAF Coverage
OWASP: A03:2021 Injection
920xxx - Protocol Enforcement 941xxx - XSS / XXE 942xxx - SQL Injection
Improper Input Validation
Medium WAF Coverage
OWASP: A03:2021 Injection
920xxx - Protocol Enforcement 941xxx - XSS / XXE 942xxx - SQL Injection
Improper Input Validation
Medium WAF Coverage
OWASP: A03:2021 Injection
920xxx - Protocol Enforcement 941xxx - XSS / XXE 942xxx - SQL Injection
Affected Software
| Vendor | Product | Version |
|---|---|---|
| nvidia | virtual_gpu | up to 11.11 |
| nvidia | virtual_gpu | 13.0 - 13.6 |
| nvidia | virtual_gpu | 14.0 - 14.4 |
| nvidia | cloud_gaming | up to 527.27 |
References
- nvidia.custhelp.com (Vendor Advisory)