Vulnerabilities > Nvidia > Low
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-26 | CVE-2021-1070 | Unspecified vulnerability in Nvidia Linux for Tegra NVIDIA Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, L4T versions prior to 32.5, contains a vulnerability in the apply_binaries.sh script used to install NVIDIA components into the root file system image, in which improper access control is applied, which may lead to an unprivileged user being able to modify system device tree files, leading to denial of service. | 3.6 |
| 2021-01-26 | CVE-2021-1071 | Unspecified vulnerability in Nvidia Linux for Tegra NVIDIA Tegra kernel in Jetson AGX Xavier Series, Jetson Xavier NX, TX1, TX2, Nano and Nano 2GB, all L4T versions prior to r32.5, contains a vulnerability in the INA3221 driver in which improper access control may lead to unauthorized users gaining access to system power usage data, which may lead to information disclosure. | 2.1 |
| 2021-01-20 | CVE-2021-1069 | NULL Pointer Dereference vulnerability in Nvidia Linux for Tegra and Shield Experience NVIDIA SHIELD TV, all versions prior to 8.2.2, contains a vulnerability in the NVHost function, which may lead to abnormal reboot due to a null pointer reference, causing data loss. | 3.6 |
| 2021-01-08 | CVE-2021-1060 | Improper Input Validation vulnerability in Nvidia Virtual GPU Manager NVIDIA vGPU software contains a vulnerability in the guest kernel mode driver and vGPU plugin, in which an input index is not validated, which may lead to tampering of data or denial of service. | 3.6 |
| 2021-01-08 | CVE-2021-1061 | Race Condition vulnerability in Nvidia Virtual GPU Manager NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which a race condition may cause the vGPU plugin to continue using a previously validated resource that has since changed, which may lead to denial of service or information disclosure. | 3.3 |
| 2021-01-08 | CVE-2021-1064 | NULL Pointer Dereference vulnerability in Nvidia Virtual GPU Manager NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which it obtains a value from an untrusted source, converts this value to a pointer, and dereferences the resulting pointer, which may lead to information disclosure or denial of service. | 3.6 |
| 2021-01-08 | CVE-2021-1065 | Improper Input Validation vulnerability in Nvidia Virtual GPU Manager NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not validated, which may lead to tampering of data or denial of service. | 3.6 |
| 2021-01-08 | CVE-2021-1066 | Improper Input Validation vulnerability in Nvidia Virtual GPU Manager NVIDIA vGPU manager contains a vulnerability in the vGPU plugin, in which input data is not validated, which may lead to unexpected consumption of resources, which in turn may lead to denial of service. | 2.1 |
| 2021-01-08 | CVE-2021-1054 | Incorrect Authorization vulnerability in Nvidia GPU Driver NVIDIA GPU Display Driver for Windows, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler for DxgkDdiEscape in which the software does not perform or incorrectly performs an authorization check when an actor attempts to access a resource or perform an action, which may lead to denial of service. | 2.1 |
| 2020-10-02 | CVE-2020-5983 | Out-of-bounds Write vulnerability in Nvidia Virtual GPU Manager NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin and the host driver kernel module, in which the potential exists to write to a memory location that is outside the intended boundary of the frame buffer memory allocated to guest operating systems, which may lead to denial of service or information disclosure. | 3.6 |