CVE-2022-42260
CVSS V2 None
CVSS V3 None
Description
NVIDIA vGPU Display Driver for Linux guest contains a vulnerability in a D-Bus configuration file, where an unauthorized user in the guest VM can impact protected D-Bus endpoints, which may lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering.
Overview
- CVE ID
- CVE-2022-42260
- Assigner
- psirt@nvidia.com
- Vulnerability Status
- Analyzed
- Published Version
- 2022-12-30T23:15:11
- Last Modified Date
- 2023-01-11T20:20:08
Weakness Enumerations
CPE Configuration (Product)
CPE | Vulnerable | Operator | Version Start | Version End |
---|---|---|---|---|
AND | ||||
cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:* | 1 | OR | 11.11 | |
cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:* | 1 | OR | 12.0 | 13.6 |
cpe:2.3:a:nvidia:virtual_gpu:*:*:*:*:*:*:*:* | 1 | OR | 14.0 | 14.4 |
cpe:2.3:o:citrix:hypervisor:-:*:*:*:*:*:*:* | 0 | OR | ||
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* | 0 | OR | ||
cpe:2.3:o:redhat:enterprise_linux_kernel-based_virtual_machine:-:*:*:*:*:*:*:* | 0 | OR | ||
cpe:2.3:o:vmware:vsphere:-:*:*:*:*:*:*:* | 0 | OR | ||
AND | ||||
cpe:2.3:a:nvidia:cloud_gaming:*:*:*:*:*:*:*:* | 1 | OR | 525.60.11 | |
cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:* | 0 | OR | ||
AND | ||||
cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:* | 1 | OR | 470 | 470.161.03 |
cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:* | 1 | OR | 510 | 510.108.03 |
cpe:2.3:a:nvidia:geforce:-:*:*:*:*:*:*:* | 0 | OR | ||
cpe:2.3:a:nvidia:nvs:-:*:*:*:*:*:*:* | 0 | OR | ||
cpe:2.3:a:nvidia:quadro:-:*:*:*:*:*:*:* | 0 | OR | ||
cpe:2.3:a:nvidia:rtx:-:*:*:*:*:*:*:* | 0 | OR | ||
AND | ||||
cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:* | 1 | OR | 450 | 450.216.04 |
cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:* | 1 | OR | 470 | 470.161.03 |
cpe:2.3:a:nvidia:gpu_display_driver:*:*:*:*:*:linux:*:* | 1 | OR | 510 | 510.108.03 |
cpe:2.3:a:nvidia:tesla:-:*:*:*:*:*:*:* | 0 | OR | ||
AND | ||||
cpe:2.3:a:nvidia:cloud_gaming:*:*:*:*:*:*:*:* | 1 | OR | 525.60.12 | |
cpe:2.3:o:citrix:hypervisor:-:*:*:*:*:*:*:* | 0 | OR | ||
cpe:2.3:o:redhat:enterprise_linux_kernel-based_virtual_machine:-:*:*:*:*:*:*:* | 0 | OR |
References
Reference URL | Reference Tags |
---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5415 |
Sources
Source Name | Source URL |
---|---|
NIST | https://nvd.nist.gov/vuln/detail/CVE-2022-42260 |
MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-42260 |
History
Created | Old Value | New Value | Data Type | Notes |
---|---|---|---|---|
2022-12-31 00:17:37 | Added to TrackCVE | |||
2022-12-31 00:17:39 | Weakness Enumeration | new | ||
2022-12-31 04:17:48 | 2022-12-31T03:26:56 | CVE Modified Date | updated | |
2022-12-31 04:17:48 | Received | Awaiting Analysis | Vulnerability Status | updated |
2023-01-05 19:15:56 | Awaiting Analysis | Undergoing Analysis | Vulnerability Status | updated |
2023-01-12 05:15:36 | 2023-01-11T20:20:08 | CVE Modified Date | updated | |
2023-01-12 05:15:37 | Undergoing Analysis | Analyzed | Vulnerability Status | updated |
2023-01-12 05:15:39 | Weakness Enumeration | update | ||
2023-01-12 05:15:42 | CPE Information | updated |