cvelist/2020/5xxx/CVE-2020-5969.json
PSIRT-NVIDIA 73ab23e96e NVIDIA vGPU CVEs June 2020
NVIDIA vGPU CVEs June 2020
2020-06-30 17:15:36 -05:00

63 lines
1.4 KiB
JSON

{
"data_type" : "CVE",
"data_format" : "MITRE",
"data_version" : "4.0",
"CVE_data_meta" : {
"ID" : "CVE-2020-5969",
"ASSIGNER" : "psirt@nvidia.com",
"STATE" : "PUBLIC"
},
"affects" : {
"vendor" : {
"vendor_data" : [
{
"vendor_name" : "NVIDIA",
"product" : {
"product_data" : [
{
"product_name" : "NVIDIA vGPU Software",
"version" : {
"version_data" : [
{
"version_value" : "All"
}
]
}
}
]
}
}
]
}
},
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng",
"value" : "denial of service or information disclosure"
}
]
}
]
},
"references" : {
"reference_data" : [
{
"refsource" : "CONFIRM",
"name" : "https://nvidia.custhelp.com/app/answers/detail/a_id/5031",
"url" : "https://nvidia.custhelp.com/app/answers/detail/a_id/5031"
}
]
},
"description" : {
"description_data" : [
{
"lang" : "eng",
"value" : "NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, in which it validates a shared resource before using it, creating a race condition which may lead to denial of service or information disclosure. This affects vGPU version 8.x (prior to 8.4), version 9.x (prior to 9.4) and version 10.x (prior to 10.3)."
}
]
}
}