Table of Contents
  • Home
  • /
  • Blog
  • /
  • How To Fix CVE‑2022‑21817- A CORS Vulnerability In NVIDIA Omniverse Launcher App
February 9, 2022
|
3m

How To Fix CVE‑2022‑21817- A CORS Vulnerability In NVIDIA Omniverse Launcher App


How To Fix Cve E2 80 912022 E2 80 9121817 A Cors Vulnerability In Nvidia Omniverse Launcher App

Security researchers recently uncovered a critical vulnerability in the NVIDIA Omniverse Launcher that could allow attackers to exploit CORS vulnerability on the affected versions of the NVIDIA Omniverse Launcher application, leading to privilege escalation and remote access code execution on NVIDIA Omniverse Launcher. The flaw tracked as CVE‑2022‑21817 has a base score of 9.3 in CVSS v3.1. We have created this post to make all NVIDIA Omniverse Launcher users aware of the flaw. In this post, let’s see how to Fix CVE‑2022‑21817- A CORS vulnerability in NVIDIA Omniverse Launcher.

What Is NVIDIA Omniverse Launcher?

This video is published by

Omniverse Launcher is an open platform created by NVIDIA for those artistic companies who develop creative virtual assets. This innovative platform is used majorly to build virtual collaboration on creative assets delivered with real-time, physically accurate simulation. It gives opportunities to create the entire VR ecosystem.

Summary Of CVE‑2022‑21817

Cross-Origin Resource Sharing (CORS) vulnerability in NVIDIA Omniverse Launcher allows an unprivileged remote attacker to acquire access tokens allowing them to access resources in other security domains, which may lead to code execution, escalation of privileges, and impact to confidentiality and integrity.

Associated CVE IDCVE‑2022‑21817
DescriptionA CORS vulnerability in NVIDIA Omniverse Launcher App
Associated ZDI ID
CVSS Score9.3 Critical
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
Impact Score5.8
Exploitability Score2.8
Attack Vector (AV)Network
Attack Complexity (AC)Low
Privilege Required (PR)None
User Interaction (UI)Required
ScopeChanged
Confidentiality (C)High
Integrity (I)High
availability (a)High

How To Fix CVE‑2022‑21817- A CORS Vulnerability In NVIDIA Omniverse Launcher App?

All the versions prior to 1.5.2 are affected by CVE‑2022‑21817 vulnerability. The flaw has been fixed in v1.5.2 and made available for download. We recommend upgrading to the latest available version.

For any queries, please contact NVIDIA Support.

We hope this post would help you know about How to Fix CVE‑2022‑21817- A CORS vulnerability in NVIDIA Omniverse Launcher App. Thanks for reading this threat post. Please share this post and help to secure the digital world. Visit our social media page in FacebookLinkedInTwitterTelegramTumblr, & Medium and subscribe to receive updates like this. 

You may also like these articles:

Arun KL

Arun KL is a cybersecurity professional with 15+ years of experience in IT infrastructure, cloud security, vulnerability management, Penetration Testing, security operations, and incident response. He is adept at designing and implementing robust security solutions to safeguard systems and data. Arun holds multiple industry certifications including CCNA, CCNA Security, RHCE, CEH, and AWS Security.

Recently added

Vulnerabilities

View All

Learn More About Cyber Security Security & Technology

“Knowledge Arsenal: Empowering Your Security Journey through Continuous Learning”

Cybersecurity All-in-One For Dummies - 1st Edition

"Cybersecurity All-in-One For Dummies" offers a comprehensive guide to securing personal and business digital assets from cyber threats, with actionable insights from industry experts.

Tools

Featured

View All

Learn Something New with Free Email subscription

Subscribe

Subscribe