CVSS: 9.9EPSS: 0%CPEs: 7EXPL: 0CVE-2022-28181 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-28181
17 May 2022 — NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the kernel mode layer, where an unprivileged regular user on the network can cause an out-of-bounds write through a specially crafted shader, which may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering. The scope of the impact may extend to other components. El controlador de pantalla de la GPU de NVIDIA para Windows y Linux contiene una vulnerabilidad en la capa del modo... • https://nvidia.custhelp.com/app/answers/detail/a_id/5353 • CWE-787: Out-of-bounds Write •
CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 0CVE-2022-28185 – Gentoo Linux Security Advisory 202310-02
https://notcve.org/view.php?id=CVE-2022-28185
17 May 2022 — NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in the ECC layer, where an unprivileged regular user can cause an out-of-bounds write, which may lead to denial of service and data tampering. El controlador de pantalla de la GPU NVIDIA para Windows y Linux contiene una vulnerabilidad en la capa ECC, donde un usuario normal no privilegiado puede causar una escritura fuera de límites, lo que puede conllevar a una denegación de servicio y una manipulación de datos Multiple vulnerabiliti... • https://nvidia.custhelp.com/app/answers/detail/a_id/5353 • CWE-787: Out-of-bounds Write •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2022-21816
https://notcve.org/view.php?id=CVE-2022-21816
07 Feb 2022 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where a user in the guest OS can cause a GPU interrupt storm on the hypervisor host, leading to a denial of service. El software vGPU de NVIDIA contiene una vulnerabilidad en el Administrador de la GPU Virtual (nvidia.ko), donde un usuario del Sistema Operativo invitado puede causar una tormenta de interrupciones de la GPU en el host del hipervisor, conllevando a una denegación de servicio • https://nvidia.custhelp.com/app/answers/detail/a_id/5312 • CWE-284: Improper Access Control CWE-306: Missing Authentication for Critical Function •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1123
https://notcve.org/view.php?id=CVE-2021-1123
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can deadlock, which may lead to denial of service. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager (vGPU plugin), donde puede bloquearse, lo que puede conllevar a una denegación de servicio • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-667: Improper Locking •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1122
https://notcve.org/view.php?id=CVE-2021-1122
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can dereference a NULL pointer, which may lead to denial of service. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager (vGPU plugin), donde puede desreferenciar a un puntero NULL, que puede conllevar a una denegación de servicio • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-476: NULL Pointer Dereference •
CVSS: 5.5EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1121
https://notcve.org/view.php?id=CVE-2021-1121
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager kernel driver, where a vGPU can cause resource starvation among other vGPUs hosted on the same GPU, which may lead to denial of service. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager kernel driver, donde una vGPU puede causar una falta de recursos entre otras vGPU alojadas en la misma GPU, que puede conllevar a una denegación de servicio • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 7.0EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1120
https://notcve.org/view.php?id=CVE-2021-1120
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a string provided by the guest OS may not be properly null terminated. The guest OS or attacker has no ability to push content to the plugin through this vulnerability, which may lead to information disclosure, data tampering, unauthorized code execution, and denial of service. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager (vGPU plugin), donde una cadena proporcionada por el Sistema Operat... • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-170: Improper Null Termination •
CVSS: 7.1EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1119
https://notcve.org/view.php?id=CVE-2021-1119
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can double-free a pointer, which may lead to denial of service. This flaw may result in a write-what-where condition, allowing an attacker to execute arbitrary code impacting integrity and availability. NVIDIA vGPU software contiene una vulnerabilidad en Virtual GPU Manager (vGPU plugin), donde puede presentarse una doble liberación de puntero, que puede conllevar a una denegación de servicio. Este defecto puede... • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-415: Double Free •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2021-1118
https://notcve.org/view.php?id=CVE-2021-1118
29 Oct 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where there is the potential to execute privileged operations by the guest OS, which may lead to information disclosure, data tampering, escalation of privileges, and denial of service El software NVIDIA vGPU contiene una vulnerabilidad en Virtual GPU Manager (complemento vGPU), donde existe la posibilidad de ejecutar operaciones privilegiadas por parte del sistema operativo invitado, lo que puede conducir a la divulgaci... • https://nvidia.custhelp.com/app/answers/detail/a_id/5230 • CWE-250: Execution with Unnecessary Privileges CWE-269: Improper Privilege Management •
CVSS: 4.4EPSS: 0%CPEs: 3EXPL: 0CVE-2021-1103
https://notcve.org/view.php?id=CVE-2021-1103
21 Jul 2021 — NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can dereference a NULL pointer, which may lead to denial of service. This affects vGPU version 12.x (prior to 12.3), version 11.x (prior to 11.5) and version 8.x (prior 8.8). El software NVIDIA vGPU contiene una vulnerabilidad en el Virtual GPU Manager (vGPU plugin), donde puede hacer desreferencia a un puntero NULL, lo que puede conllevar a una denegación de servicio. Esto afecta a las versiones 12.x de vGPU (a... • https://nvidia.custhelp.com/app/answers/detail/a_id/5211 • CWE-476: NULL Pointer Dereference •