CVE-2021-1087
published 2021-04-29CVE-2021-1087: NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager (vGPU plugin), which could allow an attacker to retrieve information that could lead to…
medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager (vGPU plugin), which could allow an attacker to retrieve information that could lead to a Address Space Layout Randomization (ASLR) bypass. This affects vGPU version 12.x (prior to 12.2), version 11.x (prior to 11.4) and version 8.x (prior to 8.7).
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nvidia | nvidia_virtual_gpu_software | — | — |
| nvidia | virtual_gpu_manager | >= 11.0 < 11.4 | 11.4 |
| nvidia | virtual_gpu_manager | >= 12.0 < 12.2 | 12.2 |
| nvidia | virtual_gpu_manager | >= 8.0 < 8.7 | 8.7 |