vulnerability

Arch Linux: Out-of-bounds Write (CVE-2022-28181)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:N/C:C/I:C/A:C)	May 17, 2022	Jul 11, 2025	Nov 27, 2025

Severity

CVSS

(AV:L/AC:M/Au:N/C:C/I:C/A:C)

Published

May 17, 2022

Added

Jul 11, 2025

Modified

Nov 27, 2025

Description

NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where an unprivileged regular user on the network can cause an out-of-bounds write through a specially crafted shader, which may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering. The scope of the impact may extend to other components.

Solution

arch-linux-upgrade-latest

References

CVE-2022-28181
https://attackerkb.com/topics/CVE-2022-28181
URL-https://nvidia.custhelp.com/app/answers/detail/a_id/5353
URL-https://security.gentoo.org/glsa/202310-02
CWE-787

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today