Vulnerabilities > Nvidia > High

DATE CVE VULNERABILITY TITLE RISK
2020-10-02 CVE-2020-5983 Out-of-bounds Write vulnerability in Nvidia Virtual GPU Manager
NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin and the host driver kernel module, in which the potential exists to write to a memory location that is outside the intended boundary of the frame buffer memory allocated to guest operating systems, which may lead to denial of service or information disclosure.
local
low complexity
nvidia CWE-787
7.1
2020-10-02 CVE-2020-5981 Out-of-bounds Write vulnerability in Nvidia Virtual GPU Manager
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the DirectX11 user mode driver (nvwgf2um/x.dll), in which a specially crafted shader can cause an out of bounds access, which may lead to denial of service or code execution.
local
low complexity
nvidia CWE-787
7.8
2020-10-02 CVE-2020-5980 Unspecified vulnerability in Nvidia Virtual GPU Manager
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in multiple components in which a securely loaded system DLL will load its dependencies in an insecure fashion, which may lead to code execution or denial of service.
local
low complexity
nvidia
7.8
2020-10-02 CVE-2020-5979 Unspecified vulnerability in Nvidia Virtual GPU Manager
NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the NVIDIA Control Panel component in which a user is presented with a dialog box for input by a high-privilege process, which may lead to escalation of privileges.
local
low complexity
nvidia
7.8
2020-09-18 CVE-2020-5976 Unspecified vulnerability in Nvidia Games and Geforce NOW
NVIDIA GeForce NOW, versions prior to 2.0.23 (Windows, macOS) and versions prior to 5.31 (Android, Shield TV), contains a vulnerability in the application software where the network test component transmits sensitive information insecurely, which may lead to information disclosure.
network
low complexity
nvidia
7.5
2020-09-18 CVE-2020-5975 Information Exposure vulnerability in Nvidia Geforce NOW
NVIDIA GeForce NOW, versions prior to 2.0.23 on Windows and macOS, contains a vulnerability in the desktop application software that includes sensitive information as part of a URL, which may lead to information disclosure.
network
low complexity
nvidia CWE-200
7.5
2020-07-08 CVE-2020-5974 Incorrect Default Permissions vulnerability in Nvidia Jetpack Software Development KIT 4.2/4.3
NVIDIA JetPack SDK, version 4.2 and 4.3, contains a vulnerability in its installation scripts in which permissions are incorrectly set on certain directories, which can lead to escalation of privileges.
local
low complexity
nvidia CWE-276
7.8
2020-06-30 CVE-2020-5972 Release of Invalid Pointer or Reference vulnerability in Nvidia Virtual GPU Manager
NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, in which local pointer variables are not initialized and may be freed later, which may lead to tampering or denial of service.
local
low complexity
nvidia CWE-763
7.1
2020-06-30 CVE-2020-5971 Out-of-bounds Read vulnerability in Nvidia Virtual GPU Manager
NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, in which the software reads from a buffer by using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer, which may lead to code execution, denial of service, escalation of privileges, or information disclosure.
local
low complexity
nvidia CWE-125
7.8
2020-06-30 CVE-2020-5970 Improper Input Validation vulnerability in Nvidia Virtual GPU Manager
NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, in which an input data size is not validated, which may lead to tampering or denial of service.
local
low complexity
nvidia CWE-20
7.1