CVE-2022-31609
published 2022-08-05CVE-2022-31609: NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it allows the guest VM to allocate resources for which the guest…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it allows the guest VM to allocate resources for which the guest is not authorized. This vulnerability may lead to loss of data integrity and confidentiality, denial of service, or information disclosure.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nvidia | nvidia_virtual_gpu_software_and_nvidia_cloud_gaming | — | — |
| nvidia | virtual_gpu | — | — |
| nvidia | virtual_gpu | — | — |
| nvidia | virtual_gpu | >= 11.0 < 11.8 | 11.8 |
| nvidia | virtual_gpu | >= 13.0 < 13.3 | 13.3 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH