cbcvebase.
CVE-2020-5991
published 2020-10-30

CVE-2020-5991: NVIDIA CUDA Toolkit, all versions prior to 11.1.1, contains a vulnerability in the NVJPEG library in which an out-of-bounds read or write operation may lead to…

high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
NVIDIA CUDA Toolkit, all versions prior to 11.1.1, contains a vulnerability in the NVJPEG library in which an out-of-bounds read or write operation may lead to code execution, denial of service, or information disclosure.

Affected

3 ranges
VendorProductVersion rangeFixed in
debiannvidia-cuda-toolkit< nvidia-cuda-toolkit 11.1.1-2 (bookworm)nvidia-cuda-toolkit 11.1.1-2 (bookworm)
nvidiacuda_toolkit< 11.1.111.1.1
nvidianvidia_cuda_toolkit

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH