CVE-2022-34667
CVSS V2 None
CVSS V3 None
Description
NVIDIA CUDA Toolkit SDK contains a stack-based buffer overflow vulnerability in cuobjdump, where an unprivileged remote attacker could exploit this buffer overflow condition by persuading a local user to download a specially crafted corrupted file and execute cuobjdump against it locally, which may lead to a limited denial of service and some loss of data integrity for the local user.
Overview
- CVE ID
- CVE-2022-34667
- Assigner
- psirt@nvidia.com
- Vulnerability Status
- Analyzed
- Published Version
- 2022-11-19T00:15:29
- Last Modified Date
- 2022-11-29T15:37:02
Weakness Enumerations
CPE Configuration (Product)
CPE | Vulnerable | Operator | Version Start | Version End |
---|---|---|---|---|
AND | ||||
cpe:2.3:a:nvidia:cuda_toolkit:*:*:*:*:*:*:*:* | 1 | OR | 11.8 | |
cpe:2.3:a:linux:linux_kernel:-:*:*:*:*:*:*:* | 0 | OR | ||
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:* | 0 | OR |
References
Reference URL | Reference Tags |
---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5373 |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2022-34667 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-34667 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2022-11-19 01:00:19 | Added to TrackCVE | |||
2022-12-07 17:55:36 | 2022-11-19T00:15Z | 2022-11-19T00:15:29 | CVE Published Date | updated |
2022-12-07 17:55:36 | 2022-11-29T15:37:02 | CVE Modified Date | updated | |
2022-12-07 17:55:36 | Analyzed | Vulnerability Status | updated | |
2022-12-07 17:55:36 | CWE-787 | Weakness Enumeration | new | |
2022-12-07 17:55:37 | CPE Information | updated |