mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-29 05:56:59 +00:00
63 lines
1.5 KiB
JSON
63 lines
1.5 KiB
JSON
{
|
|
"data_type" : "CVE",
|
|
"data_format" : "MITRE",
|
|
"data_version" : "4.0",
|
|
"CVE_data_meta" : {
|
|
"ID" : "CVE-2020-5971",
|
|
"ASSIGNER" : "psirt@nvidia.com",
|
|
"STATE" : "PUBLIC"
|
|
},
|
|
"affects" : {
|
|
"vendor" : {
|
|
"vendor_data" : [
|
|
{
|
|
"vendor_name" : "NVIDIA",
|
|
"product" : {
|
|
"product_data" : [
|
|
{
|
|
"product_name" : "NVIDIA vGPU Software",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_value" : "All"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"problemtype" : {
|
|
"problemtype_data" : [
|
|
{
|
|
"description" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "denial of service, code execution, escalation of privileges or information disclosure"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references" : {
|
|
"reference_data" : [
|
|
{
|
|
"refsource" : "CONFIRM",
|
|
"name" : "https://nvidia.custhelp.com/app/answers/detail/a_id/5031",
|
|
"url" : "https://nvidia.custhelp.com/app/answers/detail/a_id/5031"
|
|
}
|
|
]
|
|
},
|
|
"description" : {
|
|
"description_data" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, in which the software reads from a buffer by using buffer access mechanisms such as indexes or pointers that reference memory locations after the targeted buffer, which may lead to code execution, denial of service, escalation of privileges, or information disclosure. This affects vGPU version 8.x (prior to 8.4), version 9.x (prior to 9.4) and version 10.x (prior to 10.3)."
|
|
}
|
|
]
|
|
}
|
|
}
|