NVIDIA vGPU Software Input Length Validation Vulnerability

NVIDIA vGPU Software Input Length Validation Vulnerability

CVE-2021-1081 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and Virtual GPU manager (vGPU plugin), in which an input length is not validated, which may lead to information disclosure, tampering of data, or denial of service. This affects vGPU version 12.x (prior to 12.2), version 11.x (prior to 11.4) and version 8.x (prior 8.7).

Learn more about our Web Application Penetration Testing UK.