CVE-2022-34674 MEDIUM

CVE-2022-34674

Vendor Nvidia

Product vGPU software (guest driver) - Linux, vGPU software (Virtual GPU Manager), NVIDIA Cloud Gaming (guest driver), NVIDIA Cloud Gaming (Virtual GPU Manager)

Weakness CWE-200 · Info exposure

Published December 30, 2022

Last update April 11, 2025

View on NVD All CVEs

CVSS base score

6.8/10

Attack vector Local

Attack complexity Low

Privileges required None

User interaction None

Confidentiality High

Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N

What the vulnerability does

01Description

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where a helper function maps more physical pages than were requested, which may lead to undefined behavior or an information leak.

Key dates

02Disclosure timeline

December 30, 2022 CVE published

April 11, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2022-34674

Related vulnerabilities

Identifiers

CVE CVE-2022-34674

CWE CWE-200

CVSS 6.8 / MEDIUM

Affected versions