How severe is CVE-2021-1085?

High severity. CVSS v3 base score is 7.3 out of 10.

Vulnerability in Nvidia Virtual Gpu Software

CVE-2021-1085

NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where there is the potential to write to a shared memory location and manipulate the data after the data has been validated, which may lead to denial of…

EPSS: 0.000 (13.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.3 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H.

Affected products

Nvidia Virtual Gpu Software — versions vGPU version 12.x (prior to 12.2), version 11.x (prior to 11.4) and version 8.x (prior to 8.7)

References

nvidia.custhelp.com/app/answers/detail/a_id/5172 (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2021-1085?: CVE-2021-1085 is a high-severity vulnerability in Nvidia Virtual Gpu Software. CVSS score: 7.3/10. Published 2021-04-29.
How severe is CVE-2021-1085?: High severity. CVSS v3 base score is 7.3 out of 10.