Unrated severityNVD Advisory· Published Oct 29, 2021· Updated Aug 3, 2024
CVE-2021-1120
CVE-2021-1120
Description
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a string provided by the guest OS may not be properly null terminated. The guest OS or attacker has no ability to push content to the plugin through this vulnerability, which may lead to information disclosure, data tampering, unauthorized code execution, and denial of service.
Affected products
2- NVIDIA/NVIDIA Virtual GPU Softwarev5Range: vGPU version 13.x (prior to 13.1), 12.x (prior to 12.4), version 11.x (prior to 11.6) and version 8.x (prior 8.9).
Patches
Vulnerability mechanics
References
1- nvidia.custhelp.com/app/answers/detail/a_id/5230mitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.