Vulnerabilities > Nvidia > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-07-21 CVE-2021-1100 Unspecified vulnerability in Nvidia Virtual GPU
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager kernel mode driver (nvidia.ko), in which a pointer to a user-space buffer is not validated before it is dereferenced, which may lead to denial of service.
local
low complexity
nvidia
5.5
2021-07-21 CVE-2021-1101 NULL Pointer Dereference vulnerability in Nvidia Virtual GPU
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can dereference a NULL pointer, which may lead to denial of service.
local
low complexity
nvidia CWE-476
5.5
2021-07-21 CVE-2021-1102 Improper Handling of Exceptional Conditions vulnerability in Nvidia Virtual GPU
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can lead to floating point exceptions, which may lead to denial of service.
local
low complexity
nvidia CWE-755
5.5
2021-07-21 CVE-2021-1103 NULL Pointer Dereference vulnerability in Nvidia Virtual GPU
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can dereference a NULL pointer, which may lead to denial of service.
local
low complexity
nvidia CWE-476
4.4
2021-06-30 CVE-2021-34373 Out-of-bounds Write vulnerability in Nvidia Jetson Linux
Trusty trusted Linux kernel (TLK) contains a vulnerability in the NVIDIA TLK kernel where a lack of heap hardening could cause heap overflows, which might lead to information disclosure and denial of service.
local
low complexity
nvidia CWE-787
6.0
2021-06-30 CVE-2021-34374 Improper Input Validation vulnerability in Nvidia Jetson Linux
Trusty contains a vulnerability in command handlers where the length of input buffers is not verified.
local
low complexity
nvidia CWE-20
6.7
2021-06-30 CVE-2021-34375 Out-of-bounds Write vulnerability in Nvidia Jetson Linux
Trusty contains a vulnerability in all trusted applications (TAs) where the stack cookie was not randomized, which might result in stack-based buffer overflow, leading to denial of service, escalation of privileges, and information disclosure.
local
low complexity
nvidia CWE-787
6.7
2021-06-30 CVE-2021-34376 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Nvidia Jetson Linux
Trusty contains a vulnerability in the HDCP service TA where bounds checking in command 5 is missing.
local
low complexity
nvidia CWE-119
6.7
2021-06-30 CVE-2021-34377 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Nvidia Jetson Linux
Trusty contains a vulnerability in the HDCP service TA where bounds checking in command 9 is missing.
local
low complexity
nvidia CWE-119
6.7
2021-06-30 CVE-2021-34378 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Nvidia Jetson Linux
Trusty contains a vulnerability in the HDCP service TA where bounds checking in command 11 is missing.
local
low complexity
nvidia CWE-119
6.7