CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2021-1082
https://notcve.org/view.php?id=CVE-2021-1082
29 Apr 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), in which an input length is not validated, which may lead to information disclosure, tampering of data, or denial of service. vGPU version 12.x (prior to 12.2), version 11.x (prior to 11.4) and version 8.x (prior to 8.7) El software NVIDIA vGPU contiene una vulnerabilidad en Virtual GPU Manager (plugin vGPU), en la que no es comprobada una longitud de la entrada, lo que puede conllevar a una divulgación de información, m... • https://nvidia.custhelp.com/app/answers/detail/a_id/5172 • CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 7.8EPSS: 0%CPEs: 10EXPL: 0CVE-2021-1080
https://notcve.org/view.php?id=CVE-2021-1080
29 Apr 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), in which certain input data is not validated, which may lead to information disclosure, tampering of data, or denial of service. This affects vGPU version 12.x (prior to 12.2), version 11.x (prior to 11.4) and version 8.x (prior 8.7). El software NVIDIA vGPU contiene una vulnerabilidad en Virtual GPU Manager (plugin vGPU), en la que determinados datos de la entrada no se comprobaban, lo que puede conllevar a una divulgac... • https://nvidia.custhelp.com/app/answers/detail/a_id/5172 • CWE-20: Improper Input Validation •
CVSS: 7.2EPSS: 1%CPEs: 4EXPL: 0CVE-2021-21976
https://notcve.org/view.php?id=CVE-2021-21976
11 Feb 2021 — vSphere Replication 8.3.x prior to 8.3.1.2, 8.2.x prior to 8.2.1.1, 8.1.x prior to 8.1.2.3 and 6.5.x prior to 6.5.1.5 contain a post-authentication command injection vulnerability which may allow an authenticated admin user to perform a remote code execution. vSphere Replication versiones 8.3.x anteriores a 8.3.1.2, versiones 8.2.x anteriores a 8.2.1.1, versiones 8.1.x anteriores a 8.1.2.3 y versiones 6.5.x anteriores a 6.5.1.5, contienen una vulnerabilidad de inyección de comando posterior a la autenticaci... • https://www.vmware.com/security/advisories/VMSA-2021-0001.html • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2021-1066
https://notcve.org/view.php?id=CVE-2021-1066
08 Jan 2021 — NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not validated, which may lead to unexpected consumption of resources, which in turn may lead to denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3). El administrador de NVIDIA vGPU contiene una vulnerabilidad en el plugin vGPU, en la que los datos de entrada no se comprueban, lo que puede conllevar a un consumo inesperado de recursos, lo que a su vez puede conllevar a una dene... • https://nvidia.custhelp.com/app/answers/detail/a_id/5142 • CWE-20: Improper Input Validation •
CVSS: 7.1EPSS: 0%CPEs: 6EXPL: 0CVE-2021-1064
https://notcve.org/view.php?id=CVE-2021-1064
08 Jan 2021 — NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which it obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer, which may lead to information disclosure or denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3). El administrador de NVIDIA vGPU contiene una vulnerabilidad en el plugin vGPU, en la que obtiene un valor desde una fuente no confiable, convierte este valor en un puntero y des... • https://nvidia.custhelp.com/app/answers/detail/a_id/5142 • CWE-476: NULL Pointer Dereference •
CVSS: 7.1EPSS: 0%CPEs: 6EXPL: 0CVE-2021-1065
https://notcve.org/view.php?id=CVE-2021-1065
08 Jan 2021 — NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not validated, which may lead to tampering of data or denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3). El administrador de NVIDIA vGPU contiene una vulnerabilidad en el plugin vGPU, en la que los datos de entrada no se comprueban, lo que puede conllevar a una alteración de los datos o a una denegación de servicio. Esto afecta a vGPU versiones 8.x (anteriores a 8.6) y ... • https://nvidia.custhelp.com/app/answers/detail/a_id/5142 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2021-1063
https://notcve.org/view.php?id=CVE-2021-1063
08 Jan 2021 — NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which an input offset is not validated, which may lead to a buffer overread, which in turn may cause tampering of data, information disclosure, or denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3). El administrador de NVIDIA vGPU contiene una vulnerabilidad en el plugin vGPU, en la que un desplazamiento de la entrada no es comprobado, lo que puede conllevar a una lectura excesiva del búfer, que... • https://nvidia.custhelp.com/app/answers/detail/a_id/5142 • CWE-125: Out-of-bounds Read •
CVSS: 6.3EPSS: 0%CPEs: 6EXPL: 0CVE-2021-1061
https://notcve.org/view.php?id=CVE-2021-1061
08 Jan 2021 — NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which a race condition may cause the vGPU plugin to continue using a previously validated resource that has since changed, which may lead to denial of service or information disclosure. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3). El administrador de NVIDIA vGPU contiene una vulnerabilidad en el plugin vGPU, en la que una condición de carrera puede causar que el plugin vGPU continúe usando un recurso previa... • https://nvidia.custhelp.com/app/answers/detail/a_id/5142 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.1EPSS: 0%CPEs: 6EXPL: 0CVE-2021-1062
https://notcve.org/view.php?id=CVE-2021-1062
08 Jan 2021 — NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which an input data length is not validated, which may lead to tampering of data or denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3). El administrador de NVIDIA vGPU contiene una vulnerabilidad en el plugin vGPU, en la que la longitud de datos de entrada no es comprobada, lo que puede conllevar a una manipulación de los datos o a una denegación de servicio. Esto afecta a vGPU versiones 8.... • https://nvidia.custhelp.com/app/answers/detail/a_id/5142 • CWE-1284: Improper Validation of Specified Quantity in Input •
CVSS: 7.1EPSS: 0%CPEs: 8EXPL: 0CVE-2021-1060
https://notcve.org/view.php?id=CVE-2021-1060
08 Jan 2021 — NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and vGPU plugin, in which an input index is not validated, which may lead to tampering of data or denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3). El software NVIDIA vGPU contiene una vulnerabilidad en el controlador del modo kernel invitado y en el plugin vGPU, en el que un índice de entrada no es comprobado, lo que puede conllevar a una alteración de los datos o a una denegación d... • https://nvidia.custhelp.com/app/answers/detail/a_id/5142 • CWE-20: Improper Input Validation •