CVE-2024-0094

Summary

NVIDIA vGPU software for Linux contains a vulnerability in the Virtual GPU Manager, where an untrusted guest VM can cause improper control of the interaction frequency in the host. A successful exploit of this vulnerability might lead to denial of service.

Affected Software

VendorProductVersion RangeStatus
nvidiavGPU software and Cloud GamingAll versions up to and including 17.1, 16.5, 13.10, and the April 2024 releaseaffected

Weaknesses

  • CWE-799: CWE-799

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References