cbcvebase.
CVE-2022-42261
published 2022-12-30

CVE-2022-42261: NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where an input index is not validated, which may lead to buffer…

high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where an input index is not validated, which may lead to buffer overrun, which in turn may cause data tampering, information disclosure, or denial of service.

Affected

13 ranges
VendorProductVersion rangeFixed in
debiannvidia-graphics-drivers< nvidia-graphics-drivers 510.108.03-1 (bookworm)nvidia-graphics-drivers 510.108.03-1 (bookworm)
debiannvidia-graphics-drivers-tesla< nvidia-graphics-drivers 510.108.03-1 (bookworm)nvidia-graphics-drivers 510.108.03-1 (bookworm)
debiannvidia-graphics-drivers-tesla-418< nvidia-graphics-drivers 510.108.03-1 (bookworm)nvidia-graphics-drivers 510.108.03-1 (bookworm)
debiannvidia-graphics-drivers-tesla-450< nvidia-graphics-drivers 510.108.03-1 (bookworm)nvidia-graphics-drivers 510.108.03-1 (bookworm)
debiannvidia-graphics-drivers-tesla-460< nvidia-graphics-drivers 510.108.03-1 (bookworm)nvidia-graphics-drivers 510.108.03-1 (bookworm)
debiannvidia-graphics-drivers-tesla-470< nvidia-graphics-drivers 510.108.03-1 (bookworm)nvidia-graphics-drivers 510.108.03-1 (bookworm)
nvidiacloud_gaming< 525.60.12525.60.12
nvidiagpu_display_driver>= 450 < 450.216.04450.216.04
nvidiagpu_display_driver>= 470 < 470.161.03470.161.03
nvidiagpu_display_driver>= 510 < 510.108.03510.108.03
nvidiavirtual_gpu< 11.1111.11
nvidiavirtual_gpu>= 12.0 < 13.613.6
nvidiavirtual_gpu>= 14.0 < 14.414.4

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
osv7.8HIGH