CVE-2024-0094

NVIDIA vGPU software for Linux contains a vulnerability in the Virtual GPU Manager, where an untrusted guest VM can cause improper control of the interaction frequency in the host. A successful exploit of this vulnerability might lead to denial of service.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://nvidia.custhelp.com/app/answers/detail/a_id/5551

Configurations

No configuration.

History

17 Jun 2024, 12:43

Type	Values Removed	Values Added
Summary		(es) El software NVIDIA vGPU para Linux contiene una vulnerabilidad en Virtual GPU Manager, donde una VM invitada que no es de confianza puede provocar un control inadecuado de la frecuencia de interacción en el host. Una explotación exitosa de esta vulnerabilidad podría provocar una denegación de servicio.

13 Jun 2024, 22:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-06-13 22:15

Updated : 2024-06-17 12:43

NVD link : CVE-2024-0094

Mitre link : CVE-2024-0094

CVE.ORG link : CVE-2024-0094

JSON object : View

Products Affected

No product.

CWE

CWE-799

Improper Control of Interaction Frequency

5.5 /10