CVE-2022-31614
published 2022-08-05CVE-2022-31614: NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin) where it may double-free some resources. An attacker may exploit this…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin) where it may double-free some resources. An attacker may exploit this vulnerability with other vulnerabilities to cause denial of service, code execution, and information disclosure.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nvidia | nvidia_virtual_gpu_software_and_nvidia_cloud_gaming | — | — |
| nvidia | virtual_gpu | — | — |
| nvidia | virtual_gpu | — | — |
| nvidia | virtual_gpu | >= 11.0 < 11.8 | 11.8 |
| nvidia | virtual_gpu | >= 13.0 < 13.3 | 13.3 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH