How severe is CVE-2021-1086?

High severity. CVSS v3 base score is 7.1 out of 10.

Vulnerability in Nvidia Virtual Gpu Software

CVE-2021-1086

NVIDIA vGPU driver contains a vulnerability in the Virtual GPU Manager (vGPU plugin) where it allows guests to control unauthorized resources, which may lead to integrity and confidentiality loss or information disclosure. This affects vGP…

EPSS: 0.000 (13.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.1 (High). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N.

Affected products

Nvidia Virtual Gpu Software — versions vGPU version 12.x (prior to 12.2), version 11.x (prior to 11.4) and version 8.x (prior to 8.7)

References

nvidia.custhelp.com/app/answers/detail/a_id/5172 (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2021-1086?: CVE-2021-1086 is a high-severity vulnerability in Nvidia Virtual Gpu Software. CVSS score: 7.1/10. Published 2021-04-29.
How severe is CVE-2021-1086?: High severity. CVSS v3 base score is 7.1 out of 10.