39 matches found
CVE-2019-5698
CVE-2019-5698 affects NVIDIA Virtual GPU Manager (vGPU) input index validation in the vGPU plugin, leading to denial of service. Connected sources confirm the vulnerability exists across all versions of vGPU Manager and cite specific remediation paths: NVIDIA security updates provide versioned fi...
CVE-2019-5697
CVE-2019-5697 affects NVIDIA Virtual GPU Manager (vGPU) across all versions. The Red Hat/IBM advisories confirm a vulnerability where a guest VM may gain access to memory it does not own, leading to information disclosure or denial of service. Remediation per NVIDIA security updates (as reflected...
CVE-2019-5696
CVE-2019-5696 affects NVIDIA Virtual GPU Manager (vGPU) across all versions, where a guest VM can cause GPU out-of-bounds access by provisioning an incorrectly sized buffer, leading to potential denial of service. Public documentation confirms the root cause as buffer sizing issues in the vGPU gu...
CVE-2020-5980
CVE-2020-5980 affects NVIDIA Windows GPU Display Driver. The vulnerability is described as a securely loaded system DLL loading its dependencies in an insecure fashion, potentially enabling code execution or denial of service. NVIDIA’s bulletin and security updates indicate fixes across Windows d...
CVE-2021-1082
CVE-2021-1082 affects NVIDIA vGPU software, specifically a vulnerability in the Virtual GPU Manager (vGPU plugin) where input length is not validated. This can lead to information disclosure, data tampering, or denial of service. Affected versions include vGPU software 12.x before 12.2, 11.x befo...
CVE-2020-5960
CVE-2020-5960 affects NVIDIA Virtual GPU Manager, specifically the kernel module nvidia.ko, where a null pointer dereference can lead to a denial of service. The connected sources confirm this as a local-risk issue in vGPU software, with the vulnerability impacting the kernel‑mode driver. NVIDIA’...
CVE-2021-1084
CVE-2021-1084 affects NVIDIA vGPU software (guest driver and vGPU plugin) where an input length is not validated, enabling information disclosure, data tampering, or denial of service. The CVE is associated with vGPU branches 11.x (prior to 11.4) and 12.x (prior to 12.2). Public documents from NV...
CVE-2021-1087
CVE-2021-1087 affects NVIDIA vGPU software (Virtual GPU Manager) with information disclosure that could lead to ASLR bypass. Public sources in connected docs confirm affected versions: vGPU 12.x (prior to 12.2), 11.x (prior to 11.4), and 8.x (prior to 8.7). The vulnerability is discussed across N...
CVE-2020-5981
CVE-2020-5981 affects the NVIDIA Windows GPU Display Driver, specifically the DirectX11 user-mode driver component nvwgf2um/x.dll. A specially crafted shader could trigger an out-of-bounds access, potentially causing denial of service or code execution. The issue is addressed by NVIDIA through se...
CVE-2021-1066
NVIDIA vGPU software CVE-2021-1066 affects the vGPU manager/plugin where unvalidated input data can lead to unintended resource consumption and Denial of Service. Affected: vGPU 8.x (before 8.6) and 11.0 (before 11.3). Remediation: upgrade to vGPU software 11.3 or 8.6 or later, as per official se...
CVE-2020-5979
CVE-2020-5979 affects the NVIDIA GPU Display Driver (Windows) in the Control Panel component. The vulnerability allows a high-privilege process to present a dialog box for user input, potentially enabling privilege escalation. NVIDIA’s security bulletin (Sept 2020) lists this CVE with a base scor...
CVE-2021-1081
NVIDIA vGPU Software contains a vulnerability in the guest kernel mode driver and Virtual GPU Manager (vGPU plugin) where an input length is not validated. This can lead to information disclosure, data tampering, or denial of service. Affected are vGPU versions prior to 12.2 (12.x), prior to 11.4...
CVE-2021-1085
CVE-2021-1085 : NVIDIA vGPU software vulnerability in the Virtual GPU Manager (vGPU plugin) allows writing to a shared memory location and manipulating data after validation, with potential denial of service, privilege escalation, and information disclosure. Affected: vGPU versions 12.x (before 1...
CVE-2021-1080
Summary (CVE-2021-1080) NVIDIA vGPU software (Virtual GPU Manager) has an input validation issue that can cause information disclosure, data tampering, or denial of service. Affected: vGPU versions 12.x (before 12.2), 11.x (before 11.4), and 8.x (before 8.7). Impact per sources: local attacker ma...
CVE-2021-1086
CVE-2021-1086 affects NVIDIA vGPU software/driver — the Virtual GPU Manager (vGPU plugin). The vulnerability allows guests to control unauthorized resources, potentially compromising integrity and confidentiality. Affected versions are vGPU 12.x (before 12.2), 11.x (before 11.4), and 8.x (before ...
CVE-2020-5959
CVE-2020-5959 affects NVIDIA Virtual GPU Manager (vGPU) plugin. The input index value is incorrectly validated, which may lead to denial of service. The issue is tracked in NVIDIA’s security bulletin with a base score of 7.8 (CVSS v3, Local, Low attack complexity, Privileges required: Low, Impact...
CVE-2020-5989
CVE-2020-5989 applies to NVIDIA Virtual GPU Manager and is triggered by a NULL pointer dereference in the vGPU plugin, which can lead to denial of service. Affected are vGPU versions: 8.x (prior to 8.5), 10.x (prior to 10.4), and 11.0. The connected documents specify remediation via NVIDIA securi...
CVE-2021-1083
CVE-2021-1083 affects NVIDIA vGPU software, specifically the guest kernel mode driver and the Virtual GPU Manager (vGPU plugin). The issue is an input length validation error that may lead to information disclosure, data tampering, or denial of service. Affected versions are vGPU software 12.x be...
CVE-2020-5982
CVE-2020-5982 affects the NVIDIA Windows GPU Display Driver, specifically the kernel-mode layer nvlddmkm.sys scheduler. The vulnerability is described as the software not properly limiting the number/frequency of interactions with an actor, which may lead to a denial of service. The NVIDIA adviso...
CVE-2020-5988
CVE-2020-5988 affects NVIDIA Virtual GPU (vGPU) Manager. The vGPU plugin may free memory twice, leading to information disclosure or denial of service. Affected vGPU versions: 8.x (before 8.5), 10.x (before 10.4), and 11.0. The issue is tied to the vGPU plugin and host driver interaction, enablin...
CVE-2020-5983
CVE-2020-5983 affects NVIDIA’s vGPU software: a vulnerability in the vGPU plugin and host driver kernel module can allow writing beyond the frame buffer memory boundary for guest OSes, potentially causing denial of service or information disclosure. Affected vGPU versions are 8.x (before 8.5), 10...
CVE-2020-5986
The CVE-2020-5986 entry concerns NVIDIA Virtual GPU Manager. The vulnerability is due to the vGPU plugin not validating input data size, which may allow tampering or a denial of service. Affected are vGPU versions 8.x (before 8.5), 10.x (before 10.4), and 11.0. Connected sources (NVD, Red Hat, NV...
CVE-2020-5972
NVIDIA vGPU software vulnerability CVE-2020-5972 affects the vGPU plugin in NVIDIA Virtual GPU Manager. The root cause is uninitialized local pointer variables that may be freed later, enabling tampering or denial of service. Affected product lines include vGPU versions 8.x (pre-8.4), 9.x (pre-9....
CVE-2020-5985
CVE-2020-5985 affects NVIDIA Virtual GPU Manager (vGPU plugin). The root cause is input data length not being validated in the vGPU plugin, which may lead to tampering or denial of service. Affected are vGPU 8.x (before 8.5), 10.x (before 10.4), and 11.0. NVIDIA’s security bulletin and accompanyi...
CVE-2021-1057
CVE-2021-1057 affects NVIDIA’s vGPU software. The vulnerability exists in the vGPU manager’s vGPU plugin, where a guest can allocate resources it is not authorized to access, potentially leading to integrity and confidentiality loss, denial of service, or information disclosure. Affected are vGPU...
CVE-2021-1060
CVE-2021-1060 affects NVIDIA vGPU software (guest driver and vGPU plugin). The issue is an input index validation flaw that may enable data tampering or denial of service. Affected are vGPU 8.x (before 8.6) and 11.0 (before 11.3). Impact: integrity and availability can be compromised; local attac...
CVE-2021-1062
NVIDIA vGPU Manager contains a vulnerability in the vGPU plugin where input data length is not validated, potentially allowing data tampering or denial of service. Affected are vGPU versions 8.x (prior to 8.6) and 11.0 (prior to 11.3). The issue is documented across multiple sources (NVD, Red Hat...
CVE-2021-1065
CVE-2021-1065 affects NVIDIA vGPU manager (part of vGPU software): a vulnerability in the vGPU plugin where input data is not validated, potentially enabling data tampering or denial of service. Affected are vGPU versions 8.x (before 8.6) and 11.0 (before 11.3). NVIDIA’s security guidance indicat...
CVE-2020-5969
CVE-2020-5969 affects NVIDIA Virtual GPU Manager (vGPU) where the vGPU plugin validates a shared resource before use, causing a race condition that can lead to denial of service or information disclosure. Affected: vGPU versions 8.x (before 8.4), 9.x (before 9.4), and 10.x (before 10.3). Document...
CVE-2020-5987
CVE-2020-5987 : NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin where guest-supplied parameters remain writable by the guest after validation, potentially allowing the guest to pass invalid parameters to plugin handlers and cause denial of service or privilege escalation. A...
CVE-2021-1058
CVE-2021-1058 – NVIDIA vGPU vulnerability : Affects NVIDIA vGPU software in the guest kernel mode driver and vGPU plugin, where input data size is not validated. This improper validation can lead to data tampering or denial of service. Affected versions are vGPU 8.x (before 8.6) and 11.0 (before ...
CVE-2021-1059
The CVE-2021-1059 vulnerability affects the NVIDIA vGPU manager plugin where an unvalidated input index can cause an integer overflow, leading to data tampering, information disclosure, or DoS. Affected: vGPU 8.x (before 8.6) and vGPU 11.0 (before 11.3). Remediation: upgrade to affected fixed ver...
CVE-2020-5984
CVE-2020-5984 affects the NVIDIA Virtual GPU Manager (vGPU) plugin. The vulnerability is a use-after-free in the vGPU plugin when freeing resources, which can lead to denial of service , code execution , and information disclosure . Affected are vGPU versions 8.x (before 8.5), 10.x (before 10.4),...
CVE-2020-5971
The CVE-2020-5971 entry relates to NVIDIA Virtual GPU Manager (vGPU) plugin. A buffer- read weakness in the vGPU plugin allows reading from a buffer using index/pointer references beyond the buffer, potentially enabling code execution, denial of service, privilege escalation, or information discl...
CVE-2020-5968
NVIDIA vGPU Software CVE-2020-5968 affects the vGPU plugin in the NVIDIA Virtual GPU Manager. Root cause: a boundary/resource access issue (index/pointer-based) can lead to code execution, DoS, privilege escalation, or information disclosure. Affected versions: vGPU 8.x before 8.4, 9.x before 9.4...
CVE-2021-1063
NVIDIA vGPU manager contains a vulnerability in the vGPU plugin where an input offset is not validated, causing a buffer overread that can lead to data tampering, information disclosure, or denial of service. Affected are vGPU versions 8.x (before 8.6) and 11.0 (before 11.3). Remediation: upgrade...
CVE-2020-5970
NVIDIA Virtual GPU Manager (vGPU) contains a vulnerability in the vGPU plugin where input data size is not validated, potentially allowing tampering or denial of service. Affected are vGPU versions: 8.x (before 8.4), 9.x (before 9.4), and 10.x (before 10.3). Mitigation: apply the NVIDIA security ...
CVE-2021-1061
CVE-2021-1061 is a race condition in the NVIDIA vGPU manager’s vGPU plugin that may cause the plugin to continue using a resource that has changed, potentially enabling denial of service or information disclosure. Affected are vGPU versions 8.x (before 8.6) and 11.0 (before 11.3). NVIDIA’s securi...
CVE-2021-1064
CVE-2021-1064 affects NVIDIA vGPU software: a vulnerability in the vGPU plugin occurs when the code takes a value from an untrusted source, casts it to a pointer, and dereferences it, potentially causing information disclosure or denial of service. Affected are vGPU versions 8.x (before 8.6) and ...