Name of the Vulnerable Software and Affected Versions: NVIDIA GPU Display Driver versions prior to the fixed version NVIDIA vGPU software versions prior to the fixed version

Description: The NVIDIA GPU Display Driver contains vulnerabilities in the kernel mode layer, where an unprivileged regular user can cause out-of-bounds writes and reads, potentially leading to code execution, denial of service, escalation of privileges, information disclosure, and data tampering. Additionally, the Virtual GPU Manager in the NVIDIA vGPU software is vulnerable to uncontrolled resource consumption and use-after-free issues, which may cause denial of service.

Recommendations: For NVIDIA GPU Display Driver, update to a version that includes the security fixes. For NVIDIA vGPU software, update to a version that includes the security fixes. As a temporary workaround, consider restricting access to the kernel mode layer and Virtual GPU Manager to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.