Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-25517

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where a guest OS may be able to control resources for which it is not authorized, which may lead to information disclosure and data tampering.

Published

2023-07-04T00:15:09.653

Last Modified

2024-11-21T07:49:39.177

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.1 (HIGH)

Weaknesses
  • Type: Secondary
    CWE-285
  • Type: Primary
    NVD-CWE-Other
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application nvidia gpu_display_driver < 11.13 Yes
Application nvidia gpu_display_driver < 13.8 Yes
Application nvidia gpu_display_driver < 15.3 Yes
Operating System citrix hypervisor - No
Operating System redhat enterprise_linux_kernel-based_virtual_machine - No
Operating System vmware vsphere - No
References