Vulnerabilities > CVE-2020-5991 - Out-of-bounds Write vulnerability in Nvidia Cuda Toolkit

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

nvidia

CWE-787

NVD

Published: 2020-10-30

Updated: 2020-11-13

Summary

NVIDIA CUDA Toolkit, all versions prior to 11.1.1, contains a vulnerability in the NVJPEG library in which an out-of-bounds read or write operation may lead to code execution, denial of service, or information disclosure.

Vulnerable Configurations

Part	Description	Count
Application	Nvidia Nvidia Cuda Toolkit - Nvidia Cuda Toolkit 1.0 Nvidia Cuda Toolkit 1.1 Nvidia Cuda Toolkit 2.0 Nvidia Cuda Toolkit 2.1 Nvidia Cuda Toolkit 2.2 Nvidia Cuda Toolkit 2.3 Nvidia Cuda Toolkit 3.0 Nvidia Cuda Toolkit 3.1 Nvidia Cuda Toolkit 3.2 Nvidia Cuda Toolkit 4.0 Nvidia Cuda Toolkit 4.1 Nvidia Cuda Toolkit 4.2 Nvidia Cuda Toolkit 5.0 Nvidia Cuda Toolkit 5.5 Nvidia Cuda Toolkit 6.0 Nvidia Cuda Toolkit 6.5 Nvidia Cuda Toolkit 7.0 Nvidia Cuda Toolkit 7.5 Nvidia Cuda Toolkit 8.0 Nvidia Cuda Toolkit 9.0 Nvidia Cuda Toolkit 9.0.176 Nvidia Cuda Toolkit 9.1 Nvidia Cuda Toolkit 9.2 Nvidia Cuda Toolkit 10.0 Nvidia Cuda Toolkit 10.0.130 Nvidia Cuda Toolkit 10.1 Nvidia Cuda Toolkit 10.2 Nvidia Cuda Toolkit 10.2.89 Nvidia Cuda Toolkit 11.0.0 Nvidia Cuda Toolkit 11.0.1 Nvidia Cuda Toolkit 11.0.2 Nvidia Cuda Toolkit 11.0.3 Nvidia Cuda Toolkit 11.1.0	34
OS	Microsoft Microsoft Windows -	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5094