CVE-2024-0086

Summary

NVIDIA vGPU software for Linux contains a vulnerability where the software can dereference a NULL pointer. A successful exploit of this vulnerability might lead to denial of service and undefined behavior in the vGPU plugin.

Affected Software

VendorProductVersion RangeStatus
nvidiavGPU software and Cloud GamingAll versions up to and including 17.1, 16.5, 13.10, and the April 2024 releaseaffected

Weaknesses

  • CWE-476: CWE-476

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References