Unvalidated Input Length Vulnerability in NVIDIA Virtual GPU Manager

Unvalidated Input Length Vulnerability in NVIDIA Virtual GPU Manager

CVE-2020-5985 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, in which an input data length is not validated, which may lead to tampering or denial of service. This affects vGPU version 8.x (prior to 8.5), version 10.x (prior to 10.4) and version 11.0.

Learn more about our Web Application Penetration Testing UK.