CVSS: 7.8EPSS: 0%CPEs: 28EXPL: 0CVE-2022-34670 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-34670
30 Dec 2022 — NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer handler, where an unprivileged regular user can cause truncation errors when casting a primitive to a primitive of smaller size causes data to be lost in the conversion, which may lead to denial of service or information disclosure. NVIDIA GPU Display Driver para Linux contiene una vulnerabilidad en el controlador de capa del modo kernel, donde un usuario normal sin privilegios puede causar errores de truncamiento al conve... • https://lists.debian.org/debian-lts-announce/2023/05/msg00010.html • CWE-197: Numeric Truncation Error CWE-681: Incorrect Conversion between Numeric Types •
CVSS: 8.8EPSS: 0%CPEs: 6EXPL: 0CVE-2022-34669
https://notcve.org/view.php?id=CVE-2022-34669
30 Dec 2022 — NVIDIA GPU Display Driver for Windows contains a vulnerability in the user mode layer, where an unprivileged regular user can access or modify system files or other files that are critical to the application, which may lead to code execution, denial of service, escalation of privileges, information disclosure, or data tampering. NVIDIA GPU Display Driver para Windows contiene una vulnerabilidad en la capa de modo de usuario, donde un usuario normal sin privilegios puede acceder o modificar archivos del sist... • https://nvidia.custhelp.com/app/answers/detail/a_id/5415 • CWE-73: External Control of File Name or Path CWE-610: Externally Controlled Reference to a Resource in Another Sphere •
CVSS: 6.5EPSS: 0%CPEs: 11EXPL: 0CVE-2022-34666 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-34666
10 Nov 2022 — NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where a local user with basic capabilities can cause a null-pointer dereference, which may lead to denial of service. El controlador de pantalla GPU NVIDIA para Windows y Linux contiene una vulnerabilidad en la capa del modo kernel, donde un usuario local con capacidades básicas puede provocar una desreferencia de puntero nulo, lo que puede provocar una Denegación de Servicio (DoS). Multiple vulnerabilities ha... • https://nvidia.custhelp.com/app/answers/detail/a_id/5383 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-21816
https://notcve.org/view.php?id=CVE-2022-21816
07 Feb 2022 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where a user in the guest OS can cause a GPU interrupt storm on the hypervisor host, leading to a denial of service. El software vGPU de NVIDIA contiene una vulnerabilidad en el Administrador de la GPU Virtual (nvidia.ko), donde un usuario del Sistema Operativo invitado puede causar una tormenta de interrupciones de la GPU en el host del hipervisor, conllevando a una denegación de servicio • https://nvidia.custhelp.com/app/answers/detail/a_id/5312 • CWE-284: Improper Access Control CWE-306: Missing Authentication for Critical Function •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1123
https://notcve.org/view.php?id=CVE-2021-1123
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can deadlock, which may lead to denial of service. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager (vGPU plugin), donde puede bloquearse, lo que puede conllevar a una denegación de servicio • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-667: Improper Locking •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1122
https://notcve.org/view.php?id=CVE-2021-1122
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can dereference a NULL pointer, which may lead to denial of service. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager (vGPU plugin), donde puede desreferenciar a un puntero NULL, que puede conllevar a una denegación de servicio • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1121
https://notcve.org/view.php?id=CVE-2021-1121
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager kernel driver, where a vGPU can cause resource starvation among other vGPUs hosted on the same GPU, which may lead to denial of service. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager kernel driver, donde una vGPU puede causar una falta de recursos entre otras vGPU alojadas en la misma GPU, que puede conllevar a una denegación de servicio • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 7.0EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1120
https://notcve.org/view.php?id=CVE-2021-1120
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a string provided by the guest OS may not be properly null terminated. The guest OS or attacker has no ability to push content to the plugin through this vulnerability, which may lead to information disclosure, data tampering, unauthorized code execution, and denial of service. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager (vGPU plugin), donde una cadena proporcionada por el Sistema Operat... • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-170: Improper Null Termination •
CVSS: 7.1EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1119
https://notcve.org/view.php?id=CVE-2021-1119
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can double-free a pointer, which may lead to denial of service. This flaw may result in a write-what-where condition, allowing an attacker to execute arbitrary code impacting integrity and availability. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager (vGPU plugin), donde puede presentarse una doble liberación de puntero, que puede conllevar a una denegación de servicio. Este defecto puede... • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1118
https://notcve.org/view.php?id=CVE-2021-1118
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where there is the potential to execute privileged operations by the guest OS, which may lead to information disclosure, data tampering, escalation of privileges, and denial of service El software NVIDIA vGPU contiene una vulnerabilidad en Virtual GPU Manager (complemento vGPU), donde existe la posibilidad de ejecutar operaciones privilegiadas por parte del sistema operativo invitado, lo que puede conducir a la divulgaci... • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-250: Execution with Unnecessary Privileges CWE-269: Improper Privilege Management •