CVE-2024-0085

Summary

NVIDIA vGPU software for Windows and Linux contains a vulnerability where unprivileged users could execute privileged operations on the host. A successful exploit of this vulnerability might lead to data tampering, escalation of privileges, and denial of service.

Affected Software

VendorProductVersion RangeStatus
nvidiavGPU software and Cloud GamingAll versions up to and including 17.1, 16.5, 13.10, and the April 2024 releaseaffected

Weaknesses

  • CWE-266: CWE-266

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References