1. CVE-Search
  2. CVE-2021-1058
ID CVE-2021-1058
Summary NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and vGPU plugin, in which an input data size is not validated, which may lead to tampering of data or denial of service. This affects vGPU version 8.x (prior to 8.6) and version 11.0 (prior to 11.3).
References
Vulnerable Configurations
  • cpe:2.3:a:nvidia:virtual_gpu_manager:8.0:*:*:*:*:*:*:*
    cpe:2.3:a:nvidia:virtual_gpu_manager:8.0:*:*:*:*:*:*:*
  • cpe:2.3:a:nvidia:virtual_gpu_manager:8.1:*:*:*:*:*:*:*
    cpe:2.3:a:nvidia:virtual_gpu_manager:8.1:*:*:*:*:*:*:*
  • cpe:2.3:a:nvidia:virtual_gpu_manager:8.2:*:*:*:*:*:*:*
    cpe:2.3:a:nvidia:virtual_gpu_manager:8.2:*:*:*:*:*:*:*
  • cpe:2.3:a:nvidia:virtual_gpu_manager:8.3:*:*:*:*:*:*:*
    cpe:2.3:a:nvidia:virtual_gpu_manager:8.3:*:*:*:*:*:*:*
  • cpe:2.3:a:nvidia:virtual_gpu_manager:8.4:*:*:*:*:*:*:*
    cpe:2.3:a:nvidia:virtual_gpu_manager:8.4:*:*:*:*:*:*:*
  • cpe:2.3:a:nvidia:virtual_gpu_manager:8.5:*:*:*:*:*:*:*
    cpe:2.3:a:nvidia:virtual_gpu_manager:8.5:*:*:*:*:*:*:*
  • cpe:2.3:a:nvidia:virtual_gpu_manager:11.0:*:*:*:*:*:*:*
    cpe:2.3:a:nvidia:virtual_gpu_manager:11.0:*:*:*:*:*:*:*
  • cpe:2.3:a:nvidia:virtual_gpu_manager:11.1:*:*:*:*:*:*:*
    cpe:2.3:a:nvidia:virtual_gpu_manager:11.1:*:*:*:*:*:*:*
  • cpe:2.3:a:nvidia:virtual_gpu_manager:11.2:*:*:*:*:*:*:*
    cpe:2.3:a:nvidia:virtual_gpu_manager:11.2:*:*:*:*:*:*:*
  • cpe:2.3:o:citrix:hypervisor:-:*:*:*:*:*:*:*
    cpe:2.3:o:citrix:hypervisor:-:*:*:*:*:*:*:*
  • cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
    cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*
  • cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
    cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
  • cpe:2.3:o:nutanix:ahv:-:*:*:*:*:*:*:*
    cpe:2.3:o:nutanix:ahv:-:*:*:*:*:*:*:*
  • cpe:2.3:o:redhat:enterprise_linux_kernel-based_virtual_machine:-:*:*:*:*:*:*:*
    cpe:2.3:o:redhat:enterprise_linux_kernel-based_virtual_machine:-:*:*:*:*:*:*:*
  • cpe:2.3:o:vmware:vsphere:-:*:*:*:*:*:*:*
    cpe:2.3:o:vmware:vsphere:-:*:*:*:*:*:*:*
CVSS
Base: 3.6 (as of 08-08-2023 - 14:21)
Impact:
Exploitability:
CWE CWE-1284
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL PARTIAL
cvss-vector via4 AV:L/AC:L/Au:N/C:N/I:P/A:P
refmap via4
confirm https://nvidia.custhelp.com/app/answers/detail/a_id/5142
Last major update 08-08-2023 - 14:21
Published 08-01-2021 - 15:15
Last modified 08-08-2023 - 14:21
Back to Top