PT-2021-13453 · Nvidia · Nvidia Virtual Gpu Manager

Published

2021-01-08

Updated

2021-01-11

CVE-2021-1057

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions NVIDIA Virtual GPU Manager versions prior to 8.6 NVIDIA Virtual GPU Manager versions 11.0 through 11.2

Description The NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, allowing guests to allocate unauthorized resources. This may lead to integrity and confidentiality loss, denial of service, or information disclosure.

Recommendations For versions prior to 8.6, update to version 8.6 or later. For versions 11.0 through 11.2, update to version 11.3 or later.

Fix

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-770

Related Identifiers

CVE-2021-1057

Affected Products

Nvidia Virtual Gpu Manager

PT-2021-13453 · Nvidia · Nvidia Virtual Gpu Manager

CVE-2021-1057

Weakness Enumeration

Related Identifiers

Affected Products

References · 4