Nvidia Virtual Gpu Manager vulnerabilities

36 known vulnerabilities affecting nvidia/virtual_gpu_manager.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

HIGH28MEDIUM8

Vulnerabilities

Page 1 of 2

CVE-2025-33220HIGHCVSS 7.8v580.105.06(All versions prior to and including vGPU software 19.3)v570.195.02(All versions prior to and including vGPU software 18.5)+1 more2026-01-28

CVE-2025-33220 [HIGH] CWE-416 CVE-2025-33220: NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest co NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause heap memory access after the memory is freed. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or information disclosure.

cvelistv5nvd

CVE-2025-33219HIGHCVSS 7.8v580.105.06(All versions prior to and including vGPU software 19.3)v570.195.02(All versions prior to and including vGPU software 18.5)+2 more2026-01-28

CVE-2025-33219 [HIGH] CWE-190 CVE-2025-33219: NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attack NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an attacker could cause an integer overflow or wraparound. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, or information disclosure.

cvelistv5nvd

CVE-2025-23352HIGHCVSS 7.8v580.82.02(All versions up to and including the August 2025 release)v580.82.02(All versions prior to and including vGPU 19.1)+2 more2025-10-23

CVE-2025-23352 [HIGH] CWE-824 CVE-2025-23352: NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest co NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager, where a malicious guest could cause uninitialized pointer access. A successful exploit of this vulnerability might lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.

cvelistv5nvd

CVE-2025-23300MEDIUMCVSS 5.5v580.82.02(All versions up to and including the August 2025 release)v580.82.02(All versions prior to and including vGPU 19.1)+2 more2025-10-23

CVE-2025-23300 [MEDIUM] CWE-476 CVE-2025-23300: NVIDIA Display Driver for Linux contains a vulnerability in the kernel driver, where a user could ca NVIDIA Display Driver for Linux contains a vulnerability in the kernel driver, where a user could cause a null pointer dereference by allocating a specific memory resource. A successful exploit of this vulnerability might lead to denial of service.

cvelistv5nvd

CVE-2025-23332MEDIUMCVSS 5.0v580.82.02(All versions prior to and including vGPU 19.1)v570.172.07(All versions prior to and including vGPU 18.4)+1 more2025-10-23

CVE-2025-23332 [MEDIUM] CWE-476 CVE-2025-23332: NVIDIA Display Driver for Linux contains a vulnerability in a kernel module, where an attacker might NVIDIA Display Driver for Linux contains a vulnerability in a kernel module, where an attacker might be able to trigger a null pointer deference. A successful exploit of this vulnerability might lead to denial of service.

cvelistv5nvd

CVE-2025-23282HIGHCVSS 7.0v580.82.02(All versions up to and including the August 2025 release)v580.82.02(All versions prior to and including vGPU 19.1)+2 more2025-10-10

CVE-2025-23282 [HIGH] CWE-415 CVE-2025-23282: NVIDIA Display Driver for Linux contains a vulnerability where an attacker might be able to use a ra NVIDIA Display Driver for Linux contains a vulnerability where an attacker might be able to use a race condition to escalate privileges. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, data tampering, denial of service, and information disclosure.

cvelistv5nvd

CVE-2021-1081HIGHCVSS 7.8≥ 8.0, < 8.7≥ 11.0, < 11.4+1 more2021-04-29

CVE-2021-1081 [HIGH] CWE-1284 CVE-2021-1081: NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and Virtual GPU manage NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and Virtual GPU manager (vGPU plugin), in which an input length is not validated, which may lead to information disclosure, tampering of data, or denial of service. This affects vGPU version 12.x (prior to 12.2), version 11.x (prior to 11.4) and version 8.x (prior 8.7).

nvd

CVE-2021-1085HIGHCVSS 7.3≥ 8.0, < 8.7≥ 11.0, < 11.4+1 more2021-04-29

CVE-2021-1085 [HIGH] CWE-20 CVE-2021-1085: NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where there is NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where there is the potential to write to a shared memory location and manipulate the data after the data has been validated, which may lead to denial of service and escalation of privileges and information disclosure but attacker doesn't have control over what informati

nvd

CVE-2021-1086HIGHCVSS 7.1≥ 8.0, < 8.7≥ 11.0, < 11.4+1 more2021-04-29

CVE-2021-1086 [HIGH] CWE-863 CVE-2021-1086: NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager (vGPU plugin) where it allows NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager (vGPU plugin) where it allows guests to control unauthorized resources, which may lead to integrity and confidentiality loss or information disclosure. This affects vGPU version 12.x (prior to 12.2), version 11.x (prior to 11.4) and version 8.x (prior to 8.7).

nvd

CVE-2021-1080HIGHCVSS 7.8≥ 8.0, < 8.7≥ 11.0, < 11.4+1 more2021-04-29

CVE-2021-1080 [HIGH] CWE-20 CVE-2021-1080: NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), in which cer NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), in which certain input data is not validated, which may lead to information disclosure, tampering of data, or denial of service. This affects vGPU version 12.x (prior to 12.2), version 11.x (prior to 11.4) and version 8.x (prior 8.7).

nvd

CVE-2021-1083HIGHCVSS 7.8≥ 11.0, < 11.4≥ 12.0, < 12.22021-04-29

CVE-2021-1083 [HIGH] CWE-1284 CVE-2021-1083: NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and Virtual GPU Manage NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and Virtual GPU Manager (vGPU plugin), in which an input length is not validated, which may lead to information disclosure, tampering of data, or denial of service. This affects vGPU version 12.x (prior to 12.2) and version 11.x (prior to 11.4).

nvd

CVE-2021-1082HIGHCVSS 7.8≥ 8.0, < 8.7≥ 11.0, < 11.4+1 more2021-04-29

CVE-2021-1082 [HIGH] CWE-1284 CVE-2021-1082: NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), in which an NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), in which an input length is not validated, which may lead to information disclosure, tampering of data, or denial of service. vGPU version 12.x (prior to 12.2), version 11.x (prior to 11.4) and version 8.x (prior to 8.7)

nvd

CVE-2021-1084HIGHCVSS 7.8≥ 11.0, < 11.4≥ 12.0, < 12.22021-04-29

CVE-2021-1084 [HIGH] CWE-20 CVE-2021-1084: NVIDIA vGPU driver contains a vulnerability in the guest kernel mode driver and Virtual GPU Manager NVIDIA vGPU driver contains a vulnerability in the guest kernel mode driver and Virtual GPU Manager (vGPU plugin), in which an input length is not validated, which may lead to information disclosure, tampering of data or denial of service. This affects vGPU version 12.x (prior to 12.2) and version 11.x (prior to 11.4).

nvd

CVE-2021-1087MEDIUMCVSS 5.5≥ 8.0, < 8.7≥ 11.0, < 11.4+1 more2021-04-29

CVE-2021-1087 [MEDIUM] CVE-2021-1087: NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager (vGPU plugin), which could al NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager (vGPU plugin), which could allow an attacker to retrieve information that could lead to a Address Space Layout Randomization (ASLR) bypass. This affects vGPU version 12.x (prior to 12.2), version 11.x (prior to 11.4) and version 8.x (prior to 8.7).

nvd

CVE-2021-1060HIGHCVSS 7.1≥ 8.0, < 8.6≥ 11.0, < 11.32021-01-08

CVE-2021-1060 [HIGH] CWE-20 CVE-2021-1060: NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and vGPU plugin, in wh NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and vGPU plugin, in which an input index is not validated, which may lead to tampering of data or denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3).

nvd

CVE-2021-1058HIGHCVSS 7.1≥ 8.0, < 8.6≥ 11.0, < 11.32021-01-08

CVE-2021-1058 [HIGH] CWE-1284 CVE-2021-1058: NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and vGPU plugin, in wh NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and vGPU plugin, in which an input data size is not validated, which may lead to tampering of data or denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3).

nvd

CVE-2021-1065HIGHCVSS 7.1≥ 8.0, < 8.6≥ 11.0, < 11.32021-01-08

CVE-2021-1065 [HIGH] CWE-20 CVE-2021-1065: NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not validate NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not validated, which may lead to tampering of data or denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3).

nvd

CVE-2021-1064HIGHCVSS 7.1≥ 8.0, < 8.6≥ 11.0, < 11.32021-01-08

CVE-2021-1064 [HIGH] CWE-476 CVE-2021-1064: NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which it obtains a value from an NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which it obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer, which may lead to information disclosure or denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3).

nvd

CVE-2021-1063HIGHCVSS 7.8≥ 8.0, < 8.6≥ 11.0, < 11.32021-01-08

CVE-2021-1063 [HIGH] CWE-125 CVE-2021-1063: NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which an input offset is not val NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which an input offset is not validated, which may lead to a buffer overread, which in turn may cause tampering of data, information disclosure, or denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3).

nvd

CVE-2021-1062HIGHCVSS 7.1≥ 8.0, < 8.6≥ 11.0, < 11.32021-01-08

CVE-2021-1062 [HIGH] CWE-1284 CVE-2021-1062: NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which an input data length is no NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which an input data length is not validated, which may lead to tampering of data or denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3).

nvd

1 / 2Next →