Vulnerabilities > Nvidia > Low

DATE CVE VULNERABILITY TITLE RISK
2021-04-20 CVE-2021-1079 Unspecified vulnerability in Nvidia Geforce Experience
NVIDIA GeForce Experience, all versions prior to 3.22, contains a vulnerability in GameStream plugins where log files are created using NT/System level permissions, which may lead to code execution, denial of service, or local privilege escalation.
local
low complexity
nvidia
3.6
2021-02-05 CVE-2021-1072 Unspecified vulnerability in Nvidia Geforce Experience
NVIDIA GeForce Experience, all versions prior to 3.21, contains a vulnerability in GameStream (rxdiag.dll) where an arbitrary file deletion due to improper handling of log files may lead to denial of service.
local
low complexity
nvidia
3.6
2021-01-26 CVE-2021-1070 Unspecified vulnerability in Nvidia Linux for Tegra
NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, L4T versions prior to 32.5, contains a vulnerability in the apply_binaries.sh script used to install NVIDIA components into the root file system image, in which improper access control is applied, which may lead to an unprivileged user being able to modify system device tree files, leading to denial of service.
local
low complexity
nvidia
3.6
2021-01-26 CVE-2021-1071 Unspecified vulnerability in Nvidia Linux for Tegra
NVIDIA Tegra kernel in Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, all L4T versions prior to r32.5, contains a vulnerability in the INA3221 driver in which improper access control may lead to unauthorized users gaining access to system power usage data, which may lead to information disclosure.
local
low complexity
nvidia
2.1
2021-01-20 CVE-2021-1069 NULL Pointer Dereference vulnerability in Nvidia Linux for Tegra and Shield Experience
NVIDIA SHIELD TV, all versions prior to 8.2.2, contains a vulnerability in the NVHost function, which may lead to abnormal reboot due to a null pointer reference, causing data loss.
local
low complexity
nvidia CWE-476
3.6
2021-01-08 CVE-2021-1060 Improper Input Validation vulnerability in Nvidia Virtual GPU Manager
NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and vGPU plugin, in which an input index is not validated, which may lead to tampering of data or denial of service.
local
low complexity
nvidia CWE-20
3.6
2021-01-08 CVE-2021-1061 Race Condition vulnerability in Nvidia Virtual GPU Manager
NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which a race condition may cause the vGPU plugin to continue using a previously validated resource that has since changed, which may lead to denial of service or information disclosure.
local
nvidia CWE-362
3.3
2021-01-08 CVE-2021-1064 NULL Pointer Dereference vulnerability in Nvidia Virtual GPU Manager
NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which it obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer, which may lead to information disclosure or denial of service.
local
low complexity
nvidia CWE-476
3.6
2021-01-08 CVE-2021-1065 Improper Input Validation vulnerability in Nvidia Virtual GPU Manager
NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not validated, which may lead to tampering of data or denial of service.
local
low complexity
nvidia CWE-20
3.6
2021-01-08 CVE-2021-1066 Improper Input Validation vulnerability in Nvidia Virtual GPU Manager
NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not validated, which may lead to unexpected consumption of resources, which in turn may lead to denial of service.
local
low complexity
nvidia CWE-20
2.1