CVE-2022-28191
published 2022-05-17CVE-2022-28191: NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where uncontrolled resource consumption can be triggered by an…
medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where uncontrolled resource consumption can be triggered by an unprivileged regular user, which may lead to denial of service.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | nvidia-graphics-drivers | < nvidia-graphics-drivers 470.129.06-1 (bookworm) | nvidia-graphics-drivers 470.129.06-1 (bookworm) |
| debian | nvidia-graphics-drivers-tesla-460 | < nvidia-graphics-drivers 470.129.06-1 (bookworm) | nvidia-graphics-drivers 470.129.06-1 (bookworm) |
| debian | nvidia-graphics-drivers-tesla-470 | < nvidia-graphics-drivers 470.129.06-1 (bookworm) | nvidia-graphics-drivers 470.129.06-1 (bookworm) |
| nvidia | nvidia_virtual_gpu_software_and_nvidia_cloud_gaming | — | — |
| nvidia | virtual_gpu | — | — |
| nvidia | virtual_gpu | >= 11.0 < 11.8 | 11.8 |
| nvidia | virtual_gpu | >= 13.0 < 13.3 | 13.3 |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
osv5.5MEDIUM