CVE-2023-31026

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Nov 2, 2023
Updated: Nov 13, 2023
CWE ID 476

Summary

CVE-2023-31026 is a newly discovered vulnerability affecting NVIDIA's vGPU software for both Windows and Linux platforms. The issue lies within the Virtual GPU Manager (vGPU plugin), where a NULL-pointer dereference can occur, leading to denial of service (DoS) attacks. Successful exploitation of this vulnerability can result in crashes or unavailability of the vGPU functionality, potentially impacting the performance and availability of host applications. Users are advised to update their vGPU software to the latest version to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share