Microsoft Hyper-V RemoteFX vGPU Buffer Overflow Vulnerability (CNVD-2020-45323)

Microsoft Windows is a popular operating system. A buffer overflow vulnerability exists in Microsoft Hyper-V RemoteFX vGPU. An attacker can exploit this vulnerability by running a specially crafted application on a virtual machine operating system to execute arbitrary code on the host operating...

Security Bulletin: WML CE: Pillow before 7.1.0 has multiple out-of-bounds reads

Summary Pillow before 7.1.0 has multiple out-of-bounds reads in libImaging/FliDecode.c. PyTorch and TensorFlow use Pillow. Vulnerability Details CVEID: CVE-2020-10177 DESCRIPTION: Pillow could allow a remote attacker to obtain sensitive information, caused by multiple out-of-bounds reads in...

Security Bulletin: WML CE: In Pillow before 7.1.0, there is a Buffer Overflow

Summary In Pillow before 7.1.0, there are two Buffer Overflows in libImaging/TiffDecode.c. PyTorch and TensorFlow uses Pillow. Vulnerability Details CVEID: CVE-2020-10378 DESCRIPTION: Pillow could allow a remote attacker to obtain sensitive information, caused by an out-of-bounds read when readin...

Security Bulletin: WML CE: WML CE: SQLite through 3.32.0 has various security issues.

Summary TensorFlow in WML CE uses SQLite as its embedded SQL database engine. SQLite through 3.32.0 has various security issues. Vulnerability Details CVEID: CVE-2020-13631 DESCRIPTION: SQLite could allow a remote attacker to bypass security restrictions, caused by a flaw in the alter.c and...

The vulnerability of the RemoteFX vGPU component in the Microsoft Hyper-V hardware virtualization system’s operating system Windows allows a attacker to execute arbitrary code.

The vulnerability of the RemoteFX vGPU component in the Microsoft Hyper-V hardware virtualization system’s operating system Windows exists due to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted...

The vulnerability of the RemoteFX vGPU component in the Microsoft Hyper-V hardware virtualization system’s operating system Windows allows a attacker to execute arbitrary code.

The vulnerability of the RemoteFX vGPU component in the Microsoft Hyper-V hardware virtualization system’s operating system Windows exists due to insufficient validation of input data. Exploiting this vulnerability allows a remote attacker to execute arbitrary code using a specially crafted...

CVE-2020-1036

A remote code execution vulnerability exists when Hyper-V RemoteFX vGPU on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Hyper-V RemoteFX vGPU Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2020-1032, CVE-2020-104...

NVIDIA GPU Display Driver - June 2020 Security Bulletin - Lenovo Support US

No description provided...

NVIDIA Windows GPU Display Driver (June 2020)

A display driver installed on the remote Windows host is affected by multiple vulnerabilities: - A privilege escalation vulnerability exists in the Control Panel component. An authenticated, local attacker can exploit this via corrupting a system file, to gain privileged access to the system or...

NVIDIA Linux GPU Display (June 2020)

The NVIDIA GPU display driver software on the remote host is missing a security update. It is, therefore, affected by multiple vulnerabilities: - A code execution vulnerability exists in the Inter Process Communication APIs due to improper access control. An authenticated, local attacker can...

CVE-2020-12407

Mozilla Developer Nicolas Silva found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the user, but not observable from web content. This vulnerability affects Firefox 77...

Design/Logic Flaw

Mozilla Developer Nicolas Silva found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the user, but not observable from web content. This vulnerability affects Firefox 77...

CVE-2020-12407

Mozilla Developer Nicolas Silva found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the user, but not observable from web content. This vulnerability affects Firefox 77...

CVE-2020-12407

Mozilla Developer Nicolas Silva found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the user, but not observable from web content. This vulnerability affects Firefox 77...

CVE-2020-12407

CVE-2020-12407 affects Mozilla Firefox before 77. When using WebRender, under certain conditions Firefox could leak arbitrary GPU memory to the visible screen, exposing memory contents to the user (not to web content). Impact aligns with partial confidentiality; exploit details are not provided b...

CVE-2020-12407

Mozilla Developer Nicolas Silva found that when using WebRender, Firefox would under certain conditions leak arbitrary GPU memory to the visible screen. The leaked memory content was visible to the user, but not observable from web content. This vulnerability affects Firefox 77...

NVIDIA Virtual GPU Manager vGPU Input Validation Error Vulnerability (CNVD-2021-27720)

NVIDIA Virtual GPU Manager is an NVIDIA virtual GPU management software from NVIDIA. vGPU is one of the virtual FPU components. An input validation error vulnerability exists in NVIDIA Virtual GPU Manager, which stems from the vGPU plug-in not validating the size of input data, and can be exploit...

NVIDIA Virtual GPU Manager vGPU Competitive Conditions Issue Vulnerability

NVIDIA Virtual GPU Manager is an NVIDIA virtual GPU management software from NVIDIA. vGPU is one of the virtual FPU components. A Competitive Conditions Issue vulnerability exists in NVIDIA Virtual GPU Manager, which stems from the vGPU plug-in authenticating shared resources before they are used...

NVIDIA Virtual GPU Manager vGPU Buffer Overflow Vulnerability (CNVD-2021-27718)

NVIDIA Virtual GPU Manager is an NVIDIA virtual GPU management software from NVIDIA. vGPU is one of the virtual FPU components. A buffer overflow vulnerability exists in NVIDIA Virtual GPU Manager that originates from the vGPU plug-in not restricting or properly limiting operations within resourc...

NVIDIA Virtual GPU Manager vGPU has an unspecified vulnerability

NVIDIA Virtual GPU Manager is an NVIDIA virtual GPU management software from NVIDIA. vGPU is one of the virtual FPU components. A security vulnerability exists in NVIDIA Virtual GPU Manager, which stems from the vGPU plug-in not initializing local vector parameters and may be released later, whic...