CVE-2022-21813

MEDIUM

Nvidia Cloud Gaming Guest - Improper Access Control

Title source: rule

Description

NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel driver, where improper handling of insufficient permissions or privileges may allow an unprivileged local user limited write access to protected memory, which can lead to denial of service.

References (2)

[Vendor Advisory] https://nvidia.custhelp.com/app/answers/detail/a_id/5312

[Third Party Advisory] https://security.gentoo.org/glsa/202310-02

Scores

CVSS v3 6.1

EPSS 0.0005

EPSS Percentile 13.8%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

Classification

CWE

CWE-284 CWE-755

Status published

Affected Products (8)

nvidia/cloud_gaming_guest

nvidia/geforce

nvidia/gpu_display_driver

nvidia/nvs

nvidia/quadro

nvidia/rtx

nvidia/tesla

nvidia/virtual_gpu

Timeline

Published Feb 07, 2022

Tracked Since Feb 18, 2026