CVE-2022-28192— NVIDIA vGPU Manager 资源管理错误漏洞

N/A

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where it may lead to a use-after-free, which in turn may cause denial of service. This attack is complex to carry out because the attacker needs to have control over freeing some host side resources out of sequence, which requires elevated privileges.

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

释放后使用

NVIDIA vGPU Manager 资源管理错误漏洞

NVIDIA vGPU Manager是美国英伟达（NVIDIA）公司的一个用于为虚拟机提供GPU功能的管理软件。该软件支持多个虚拟机访问主机的GPU，为虚拟机提供图形性能和应用程序兼容性。 NVIDIA vGPU Manager（nvidia.ko）存在安全漏洞，攻击者利用该漏洞可导致释放后重用，从而导致拒绝服务。

N/A

N/A