Vulnerability in Microsoft Windows
CVE-2022-34669
NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged regular user can access or modify system files or other files that are critical to the application, which may lead to code executi…
EPSS: 0.003 (19.4th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 8.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H.
Affected products
- Microsoft Windows
- Nvidia Cloud_gaming
- Nvidia Vgpu Software (Guest Driver) - Windows, Cloud Gaming — versions All versions prior to and including 14.2, 13.4, and 11.9, and all versions prior to the November 2022 release
- Nvidia Virtual_gpu
Weakness classification (CWE)
References
- psirt@nvidia.com (Vendor Advisory)
Frequently asked questions
- What is CVE-2022-34669?
- CVE-2022-34669 is a high-severity vulnerability in Microsoft Windows, classified under External Control of File Name or Path. CVSS score: 8.8/10. Published 2022-12-30.
- How severe is CVE-2022-34669?
- High severity. CVSS v3 base score is 8.8 out of 10.