Lucene search

China National Vulnerability DatabaseCNVD-2022-55230

HistoryMay 19, 2022 - 12:00 a.m.

NVIDIA vGPU Software Memory Misreference Vulnerability

2022-05-1900:00:00

China National Vulnerability Database

www.cnvd.org.cn

4.1 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

12.4%

JSON

NVIDIA vGPU Software is a management software from NVIDIA Corporation that provides GPU capabilities to virtual machines. The software supports multiple virtual machines accessing the host GPU, providing graphics performance and application compatibility for virtual machines. vGPU Software is vulnerable to a memory mis-reference vulnerability that could be exploited to cause a denial of service.

CPENameOperatorVersion
nvidia vgpu softwarele13.2
nvidia vgpu softwarele11.7
nvidia vgpu softwarele14.0

Name	Operator	Version
nvidia vgpu software	le	13.2
nvidia vgpu software	le	11.7
nvidia vgpu software	le	14.0

4.1 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

1.9 Low

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

12.4%

JSON

Related for CNVD-2022-55230