CVE-2021-1103

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it can dereference a NULL pointer, which may lead to denial of service. This affects vGPU version 12.x (prior to 12.3), version 11.x (prior to 11.5) and version 8.x (prior 8.8).

Published: Jul 21, 2021
Updated: Apr 14, 2023
CVE: CVE-2021-1103
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.4
AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:N/I:N/A:P

CWEs:

CWE-476

Affected Software
References

Software	From	Fixed in
nvidia / virtual_gpu	8.0	8.8
nvidia / virtual_gpu	11.0	11.5
nvidia / virtual_gpu	12.0	12.3

https://nvidia.custhelp.com/app/answers/detail/a_id/5211

Vulnerability Database

289,871

CVE-2021-1103