Unauthorized Resource Control Vulnerability in NVIDIA vGPU Software

Unauthorized Resource Control Vulnerability in NVIDIA vGPU Software

CVE-2023-25517 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a guest OS may be able to control resources for which it is not authorized, which may lead to information disclosure and data tampering.

Learn more about our Web Application Penetration Testing UK.