How severe is CVE-2021-1084?

High severity. CVSS v3 base score is 7.8 out of 10.

Vulnerability in Nvidia Virtual Gpu Software

CVE-2021-1084

NVIDIA vGPU driver contains a vulnerability in the guest kernel mode driver and Virtual GPU Manager (vGPU plugin), in which an input length is not validated, which may lead to information disclosure, tampering of data or denial of service…

EPSS: 0.001 (17.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Nvidia Virtual Gpu Software — versions vGPU all 11.x version (prior to 11.4), and all 12.x version (prior to 12.2)

References

nvidia.custhelp.com/app/answers/detail/a_id/5172 (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2021-1084?: CVE-2021-1084 is a high-severity vulnerability in Nvidia Virtual Gpu Software. CVSS score: 7.8/10. Published 2021-04-29.
How severe is CVE-2021-1084?: High severity. CVSS v3 base score is 7.8 out of 10.