CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2022-28184 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-28184
17 May 2022 — NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where an unprivileged regular user can access administrator- privileged registers, which may lead to denial of service, information disclosure, and data tampering. El controlador de pantalla de la GPU NVIDIA para Windows y Linux contiene una vulnerabilidad en el controlador de la capa de modo del kernel (nvlddmkm.sys) para DxgkDdiEscape, por la que un usuario normal no ... • https://nvidia.custhelp.com/app/answers/detail/a_id/5353 • CWE-284: Improper Access Control •
CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 0CVE-2022-28185 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-28185
17 May 2022 — NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the ECC layer, where an unprivileged regular user can cause an out-of-bounds write, which may lead to denial of service and data tampering. El controlador de pantalla de la GPU NVIDIA para Windows y Linux contiene una vulnerabilidad en la capa ECC, donde un usuario normal no privilegiado puede causar una escritura fuera de límites, lo que puede conllevar a una denegación de servicio y una manipulación de datos Multiple vulnerabiliti... • https://nvidia.custhelp.com/app/answers/detail/a_id/5353 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-21816
https://notcve.org/view.php?id=CVE-2022-21816
07 Feb 2022 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where a user in the guest OS can cause a GPU interrupt storm on the hypervisor host, leading to a denial of service. El software vGPU de NVIDIA contiene una vulnerabilidad en el Administrador de la GPU Virtual (nvidia.ko), donde un usuario del Sistema Operativo invitado puede causar una tormenta de interrupciones de la GPU en el host del hipervisor, conllevando a una denegación de servicio • https://nvidia.custhelp.com/app/answers/detail/a_id/5312 • CWE-284: Improper Access Control CWE-306: Missing Authentication for Critical Function •
CVSS: 5.5EPSS: 0%CPEs: 10EXPL: 0CVE-2022-21815
https://notcve.org/view.php?id=CVE-2022-21815
07 Feb 2022 — NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for private IOCTLs where a NULL pointer dereference in the kernel, created within user mode code, may lead to a denial of service in the form of a system crash. NVIDIA GPU Display Driver para Windows contiene una vulnerabilidad en el manejador de la capa del modo kernel (nvlddmkm.sys) para las IOCTL privadas en la que una desreferencia del puntero NULL en el kernel, creada dentro del código del mod... • https://nvidia.custhelp.com/app/answers/detail/a_id/5312 • CWE-476: NULL Pointer Dereference •
CVSS: 6.1EPSS: 0%CPEs: 9EXPL: 0CVE-2022-21813 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-21813
07 Feb 2022 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel driver, where improper handling of insufficient permissions or privileges may allow an unprivileged local user limited write access to protected memory, which can lead to denial of service. NVIDIA GPU Display Driver para Linux contiene una vulnerabilidad en el controlador del kernel, donde el manejo inapropiado de permisos o privilegios insuficientes puede permitir a un usuario local no privilegiado un acceso de escritura limitado a ... • https://nvidia.custhelp.com/app/answers/detail/a_id/5312 • CWE-284: Improper Access Control CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1123
https://notcve.org/view.php?id=CVE-2021-1123
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can deadlock, which may lead to denial of service. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager (vGPU plugin), donde puede bloquearse, lo que puede conllevar a una denegación de servicio • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-667: Improper Locking •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1122
https://notcve.org/view.php?id=CVE-2021-1122
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can dereference a NULL pointer, which may lead to denial of service. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager (vGPU plugin), donde puede desreferenciar a un puntero NULL, que puede conllevar a una denegación de servicio • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1121
https://notcve.org/view.php?id=CVE-2021-1121
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager kernel driver, where a vGPU can cause resource starvation among other vGPUs hosted on the same GPU, which may lead to denial of service. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager kernel driver, donde una vGPU puede causar una falta de recursos entre otras vGPU alojadas en la misma GPU, que puede conllevar a una denegación de servicio • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 7.0EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1120
https://notcve.org/view.php?id=CVE-2021-1120
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a string provided by the guest OS may not be properly null terminated. The guest OS or attacker has no ability to push content to the plugin through this vulnerability, which may lead to information disclosure, data tampering, unauthorized code execution, and denial of service. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager (vGPU plugin), donde una cadena proporcionada por el Sistema Operat... • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-170: Improper Null Termination •
CVSS: 7.1EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1119
https://notcve.org/view.php?id=CVE-2021-1119
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can double-free a pointer, which may lead to denial of service. This flaw may result in a write-what-where condition, allowing an attacker to execute arbitrary code impacting integrity and availability. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager (vGPU plugin), donde puede presentarse una doble liberación de puntero, que puede conllevar a una denegación de servicio. Este defecto puede... • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-415: Double Free •