Description
NVIDIA vGPU software contains a vulnerability in the virtual GPU manager, where an attacker could cause an out-of-bound access. A successful exploit of this vulnerability might lead to data tampering, denial of service, or information disclosure.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
Low
Integrity
Low
Availability
High
Affected products
- NVIDIA / Virtual GPU Manager595.58.02(All versions up to and including the March 2026 release) – 595.58.02(All versions up to and including the March 2026 release)
- NVIDIA / Virtual GPU Manager595.58.02(All versions prior to and including vGPU 20.0) – 595.58.02(All versions prior to and including vGPU 20.0)
- NVIDIA / Virtual GPU Manager580.126.08(All versions prior to and including vGPU 19.4) – 580.126.08(All versions prior to and including vGPU 19.4)
- NVIDIA / Virtual GPU Manager535.288.01(All versions prior to and including vGPU 16.13) – 535.288.01(All versions prior to and including vGPU 16.13)
- NVIDIA / Virtual GPU Manager595.94(All versions prior to and including vGPU 20.0) – 595.94(All versions prior to and including vGPU 20.0)
- NVIDIA / Virtual GPU Manager582.16(All versions prior to and including vGPU 19.4) – 582.16(All versions prior to and including vGPU 19.4)