CVE-2024-0094

CWE-7993 documents3 sources

Severity

5.5MEDIUM

EPSS

0.1%

top 81.37%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Nvidia Vgpu Software AND Cloud Gaming

Timeline

PublishedJun 13

Latest updateJun 14

Description

NVIDIA vGPU software for Linux contains a vulnerability in the Virtual GPU Manager, where an untrusted guest VM can cause improper control of the interaction frequency in the host. A successful exploit of this vulnerability might lead to denial of service.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages1 packages

▶CVEListV5nvidia/vgpu_software_and_cloud_gamingAll versions up to and including 17.1, 16.5, 13.10, and the April 2024 release

🔴Vulnerability Details

GHSA

GHSA-rfh8-hgh4-42q6: NVIDIA vGPU software for Linux contains a vulnerability in the Virtual GPU Manager, where an untrusted guest VM can cause improper control of the inte↗2024-06-14

▶

CVEList

CVE↗2024-06-13

▶