Vulnerabilities > Nvidia
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-10-29 | CVE-2021-1121 | Allocation of Resources Without Limits or Throttling vulnerability in Nvidia Virtual GPU NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager kernel driver, where a vGPU can cause resource starvation among other vGPUs hosted on the same GPU, which may lead to denial of service. | 5.5 |
| 2021-10-29 | CVE-2021-1122 | NULL Pointer Dereference vulnerability in Nvidia Virtual GPU NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can dereference a NULL pointer, which may lead to denial of service. | 5.5 |
| 2021-10-29 | CVE-2021-1123 | Improper Locking vulnerability in Nvidia Virtual GPU NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can deadlock, which may lead to denial of service. | 5.5 |
| 2021-10-27 | CVE-2021-1115 | NULL Pointer Dereference vulnerability in Nvidia GPU Display Driver NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for private IOCTLs, where an attacker with local unprivileged system access may cause a NULL pointer dereference, which may lead to denial of service in a component beyond the vulnerable component. | 6.5 |
| 2021-10-27 | CVE-2021-1116 | NULL Pointer Dereference vulnerability in Nvidia GPU Display Driver NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys), where a NULL pointer dereference in the kernel, created within user mode code, may lead to a denial of service in the form of a system crash. | 5.5 |
| 2021-10-27 | CVE-2021-1117 | Improper Validation of Array Index vulnerability in Nvidia GPU Display Driver Windows contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape, where an attacker through specific configuration and with local unprivileged system access may cause improper input validation, which may lead to denial of service. | 5.5 |
| 2021-08-23 | CVE-2021-39158 | Insufficient Verification of Data Authenticity vulnerability in Nvidia Nvcaffe NVCaffe's python required dependencies list used to contain `gfortran`version prior to 0.17.4, entry which does not exist in the repository pypi.org. | 8.8 |
| 2021-08-13 | CVE-2021-34398 | Inclusion of Functionality from Untrusted Control Sphere vulnerability in Nvidia Data Center GPU Manager NVIDIA DCGM, all versions prior to 2.2.9, contains a vulnerability in the DIAG module where any user can inject shared libraries into the DCGM server, which is usually running as root, which may lead to privilege escalation, total loss of confidentiality and integrity, and complete denial of service. | 7.8 |
| 2021-08-11 | CVE-2021-1106 | Out-of-bounds Write vulnerability in Nvidia Jetson Linux and Shield Experience NVIDIA Linux kernel distributions contain a vulnerability in nvmap, where writes may be allowed to read-only buffers, which may result in escalation of privileges, complete denial of service, unconstrained information disclosure, and serious data tampering of all processes on the system. | 7.8 |
| 2021-08-11 | CVE-2021-1107 | Unspecified vulnerability in Nvidia Jetson Linux and Shield Experience NVIDIA Linux kernel distributions contain a vulnerability in nvmap NVMAP_IOC_WRITE* paths, where improper access controls may lead to code execution, complete denial of service, and seriously compromised integrity of all system components. | 7.8 |