NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which an input data length is not validated, which may lead to tampering of data or denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3).
References
| Link | Resource |
|---|---|
| https://nvidia.custhelp.com/app/answers/detail/a_id/5142 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
08 Aug 2023, 14:21
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | CWE-1284 |
11 Jan 2021, 20:54
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:o:nutanix:ahv:-:*:*:*:*:*:*:* cpe:2.3:o:redhat:enterprise_linux_kernel-based_virtual_machine:-:*:*:*:*:*:*:* cpe:2.3:o:vmware:vsphere:-:*:*:*:*:*:*:* cpe:2.3:o:citrix:hypervisor:-:*:*:*:*:*:*:* cpe:2.3:a:nvidia:virtual_gpu_manager:*:*:*:*:*:*:*:* |
|
| References | (CONFIRM) https://nvidia.custhelp.com/app/answers/detail/a_id/5142 - Vendor Advisory | |
| CWE | CWE-20 | |
| CVSS |
v2 : v3 : |
v2 : 3.6
v3 : 7.1 |
08 Jan 2021, 15:47
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2021-01-08 15:15
Updated : 2023-12-10 13:41
NVD link : CVE-2021-1062
Mitre link : CVE-2021-1062
CVE.ORG link : CVE-2021-1062
JSON object : View
Products Affected
nvidia
- virtual_gpu_manager
redhat
- enterprise_linux_kernel-based_virtual_machine
vmware
- vsphere
nutanix
- ahv
citrix
- hypervisor
CWE
CWE-1284
Improper Validation of Specified Quantity in Input