Vulnerability Description
NVIDIA Virtual GPU Manager and the guest drivers contain a vulnerability in vGPU plugin, in which there is the potential to execute privileged operations, which may lead to denial of service. This affects vGPU version 8.x (prior to 8.4), version 9.x (prior to 9.4) and version 10.x (prior to 10.3).
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nvidia | Virtual Gpu | >= 8.0, <= 8.3 |
| Canonical | Ubuntu Linux | 18.04 |
References
- https://nvidia.custhelp.com/app/answers/detail/a_id/5031Vendor Advisory
- https://usn.ubuntu.com/4404-1/Third Party Advisory
- https://usn.ubuntu.com/4404-2/Third Party Advisory
- https://nvidia.custhelp.com/app/answers/detail/a_id/5031Vendor Advisory
- https://usn.ubuntu.com/4404-1/Third Party Advisory
- https://usn.ubuntu.com/4404-2/Third Party Advisory
FAQ
What is CVE-2020-5973?
CVE-2020-5973 is a vulnerability with a CVSS score of 4.4 (MEDIUM). NVIDIA Virtual GPU Manager and the guest drivers contain a vulnerability in vGPU plugin, in which there is the potential to execute privileged operations, which may lead to denial of service. This aff...
How severe is CVE-2020-5973?
CVE-2020-5973 has been rated MEDIUM with a CVSS base score of 4.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-5973?
Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Virtual Gpu, Canonical Ubuntu Linux.