Vulnerability Details CVE-2020-5969
NVIDIA Virtual GPU Manager contains a vulnerability in the vGPU plugin, in which it validates a shared resource before using it, creating a race condition which may lead to denial of service or information disclosure. This affects vGPU version 8.x (prior to 8.4), version 9.x (prior to 9.4) and version 10.x (prior to 10.3).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 12.3%
CVSS Severity
CVSS v3 Score 6.3
CVSS v2 Score 3.3
References
Products affected by CVE-2020-5969
-
cpe:2.3:a:nvidia:virtual_gpu_manager:10.0
-
cpe:2.3:a:nvidia:virtual_gpu_manager:10.1
-
cpe:2.3:a:nvidia:virtual_gpu_manager:10.2
-
cpe:2.3:a:nvidia:virtual_gpu_manager:8.0
-
cpe:2.3:a:nvidia:virtual_gpu_manager:8.1
-
cpe:2.3:a:nvidia:virtual_gpu_manager:8.2
-
cpe:2.3:a:nvidia:virtual_gpu_manager:8.3
-
cpe:2.3:a:nvidia:virtual_gpu_manager:9.0
-
cpe:2.3:a:nvidia:virtual_gpu_manager:9.1
-
cpe:2.3:a:nvidia:virtual_gpu_manager:9.2
-
cpe:2.3:a:nvidia:virtual_gpu_manager:9.3