CVE-2026-24201

Summary

NVIDIA vGPU software contains a vulnerability in the virtual GPU manager, where an attacker could cause an out-of-bound access. A successful exploit of this vulnerability might lead to data tampering, denial of service, or information disclosure.

Affected Software

VendorProductVersion RangeStatus
NVIDIAVirtual GPU Manager595.58.02(All versions up to and including the March 2026 release)affected
NVIDIAVirtual GPU Manager595.58.02(All versions prior to and including vGPU 20.0)affected
NVIDIAVirtual GPU Manager580.126.08(All versions prior to and including vGPU 19.4)affected
NVIDIAVirtual GPU Manager535.288.01(All versions prior to and including vGPU 16.13)affected
NVIDIAVirtual GPU Manager595.94(All versions prior to and including vGPU 20.0)affected
NVIDIAVirtual GPU Manager582.16(All versions prior to and including vGPU 19.4)affected

Weaknesses

  • CWE-787: CWE-787 Out-of-bounds Write

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References