CVE-2022-42267 HIGH

CVE-2022-42267

Vendor Nvidia
Product NVIDIA GPU Display Driver for Windows
Weakness CWE-345
Published December 30, 2022
Last update April 10, 2025

CVSS base score

7.0/10
Attack vector Local
Attack complexity High
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

NVIDIA GPU Display Driver for Windows contains a vulnerability where a regular user can cause an out-of-bounds read, which may lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering.

Key dates

02Disclosure timeline

December 30, 2022 CVE published
April 10, 2025 Record updated