CVE-2023-31021

NVIDIA vGPU software for Windows and Linux contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a malicious user in the guest VM can cause a NULL-pointer dereference, which may lead to denial of service.

Published: Nov 2, 2023
Updated: Nov 14, 2023
CVE: CVE-2023-31021
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.5
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWEs:

CWE-476

Affected Software
References

Software	From	Fixed in
nvidia / virtual_gpu	-	13.9
nvidia / virtual_gpu	14.0	15.4
nvidia / virtual_gpu	16.0	16.2

https://nvidia.custhelp.com/app/answers/detail/a_id/5491

Vulnerability Database

289,871

CVE-2023-31021