CVE-2021-1065

CWE-20Improper Input Validation3 documents3 sources
Severity
7.1HIGH
EPSS
0.1%
top 68.65%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Nvidia Virtual GPU ManagerNvidia Nvidia Virtual GPU Manager
Timeline
PublishedJan 8
Latest updateMay 24

Description

NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not validated, which may lead to tampering of data or denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3).

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:HExploitability: 1.8 | Impact: 5.2

Affected Packages2 packages

NVDnvidia/virtual_gpu_manager8.08.6+1
CVEListV5nvidia/nvidia_virtual_gpu_managerVersion 8.x (prior to 8.6) and version 11.0 (prior to 11.3)

🔴Vulnerability Details

2
GHSA
GHSA-52f9-w6mx-8654: NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not validated, which may lead to tampering of data or denial o2022-05-24
CVEList
CVE-2021-1065: NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not validated, which may lead to tampering of data or denial o2021-01-08
CVE-2021-1065 (HIGH CVSS 7.1) | NVIDIA vGPU manager contains a vuln | cvebase.io