NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a string provided by the guest OS may not be properly null terminated. The guest OS or attacker has no ability to push content to the plugin through this vulnerability, which may lead to information disclosure, data tampering, unauthorized code execution, and denial of service.
References
Link | Resource |
---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5230 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: nvidia
Published: 2021-10-29T19:30:19
Updated: 2021-10-29T19:30:19
Reserved: 2020-11-12T00:00:00
Link: CVE-2021-1120
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-10-29T20:15:08.917
Modified: 2021-11-02T19:31:41.240
Link: CVE-2021-1120
JSON object: View
Redhat Information
No data.
CWE