CVE-2022-31614

Summary

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin) where it may double-free some resources. An attacker may exploit this vulnerability with other vulnerabilities to cause denial of service, code execution, and information disclosure.

Affected Software

VendorProductVersion RangeStatus
NVIDIANVIDIA Virtual GPU Software and NVIDIA Cloud GamingvGPU version 14.x (prior to 14.2), version 13.x (prior to 13.4) and version 11.x (prior 11.9).affected

Weaknesses

  • CWE-415: CWE-415 Double Free

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References