Category: NVIDIA
-
NVIDIA security vulnerability (CVE-2024-0128)
CVE-2024-0128 is a vulnerability identified in NVIDIA’s vGPU software, specifically in the Virtual GPU Manager. This flaw allows a user operating within a guest OS to access global resources improperly. If exploited successfully, it can lead to information disclosure, data tampering, and privilege escalation. Affected versions include all releases prior to version 17.4 and 16.8…
-
NVIDIA security vulnerability (CVE-2024-0127)
CVE-2024-0127 is a high-severity vulnerability affecting NVIDIA’s vGPU software, specifically in the GPU kernel driver of the vGPU Manager. It affects all supported hypervisors, allowing a user on the guest OS to exploit improper input validation, potentially compromising the guest OS kernel. A successful exploit of this vulnerability might lead to code execution, escalation of…
-
NVIDIA security vulnerability (CVE-2024-0126)
CVE-2024-0126 is a high-severity vulnerability affecting NVIDIA GPU Display Drivers for Windows and Linux. It stems from improper input validation (CWE-20) and could allow a privileged attacker to escalate permissions. Exploiting this vulnerability might lead to various outcomes, including arbitrary code execution, denial of service, escalation of privileges, information disclosure, and data tampering. Affected versions…
-
NVIDIA security vulnerability (CVE-2024-0132)
CVE-2024-0132 is a critical vulnerability in NVIDIA Container Toolkit (versions 1.16.1 and earlier) and NVIDIA GPU Operator (versions 24.6.1 and earlier). It is classified as a Time-of-Check Time-of-Use (TOCTOU) issue, which could allow an attacker to exploit a flaw in how the container runtime accesses resources, potentially gaining access to the host file system through…