nvd-json-data-feeds/CVE-2020/CVE-2020-59xx/CVE-2020-5982.json

{
  "id": "CVE-2020-5982",
  "sourceIdentifier": "psirt@nvidia.com",
  "published": "2020-10-02T19:15:14.150",
  "lastModified": "2020-10-09T18:07:07.797",
  "vulnStatus": "Analyzed",
  "descriptions": [
    {
      "lang": "en",
      "value": "NVIDIA Windows GPU Display Driver, all versions, contains a vulnerability in the kernel mode layer (nvlddmkm.sys) scheduler, in which the software does not properly limit the number or frequency of interactions that it has with an actor, such as the number of incoming requests, which may lead to denial of service."
    },
    {
      "lang": "es",
      "value": "NVIDIA Windows GPU Display Driver, todas las versiones, contiene una vulnerabilidad en el programador de capa del modo kernel (nvlddmkm.sys), en la que el software no limita apropiadamente el n\u00famero o la frecuencia de interacciones que tiene con un actor, como el n\u00famero de peticiones entrantes, que puede conllevar a una denegaci\u00f3n del servicio"
    }
  ],
  "metrics": {
    "cvssMetricV31": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "3.1",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
          "attackVector": "LOCAL",
          "attackComplexity": "LOW",
          "privilegesRequired": "HIGH",
          "userInteraction": "NONE",
          "scope": "UNCHANGED",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "availabilityImpact": "HIGH",
          "baseScore": 4.4,
          "baseSeverity": "MEDIUM"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 3.6
      }
    ],
    "cvssMetricV2": [
      {
        "source": "nvd@nist.gov",
        "type": "Primary",
        "cvssData": {
          "version": "2.0",
          "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P",
          "accessVector": "LOCAL",
          "accessComplexity": "LOW",
          "authentication": "NONE",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 2.1
        },
        "baseSeverity": "LOW",
        "exploitabilityScore": 3.9,
        "impactScore": 2.9,
        "acInsufInfo": false,
        "obtainAllPrivilege": false,
        "obtainUserPrivilege": false,
        "obtainOtherPrivilege": false,
        "userInteractionRequired": false
      }
    ]
  },
  "weaknesses": [
    {
      "source": "nvd@nist.gov",
      "type": "Primary",
      "description": [
        {
          "lang": "en",
          "value": "CWE-770"
        }
      ]
    }
  ],
  "configurations": [
    {
      "nodes": [
        {
          "operator": "OR",
          "negate": false,
          "cpeMatch": [
            {
              "vulnerable": true,
              "criteria": "cpe:2.3:a:nvidia:virtual_gpu_manager:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "578C1823-2027-45EA-8922-4404BF98B6BB"
            }
          ]
        }
      ]
    }
  ],
  "references": [
    {
      "url": "https://nvidia.custhelp.com/app/answers/detail/a_id/5075",
      "source": "psirt@nvidia.com",
      "tags": [
        "Vendor Advisory"
      ]
    }
  ]
}