Request a Demo
Rewterz
Rewterz Threat Update – Unpatched VMware Vulnerabilities Actively Exploited by Threat Actors
May 19, 2022
Rewterz
Rewterz Threat Advisory – Multiple NVIDIA GPU Display Driver for Windows and Linux Vulnerabilities
May 19, 2022

Rewterz Threat Advisory – Multiple NVIDIA vGPU Software Vulnerabilities

Severity

Medium

Analysis Summary

CVE-2022-28191 CVSS:5.5

NVIDIA vGPU software is vulnerable to a denial of service, caused by an uncontrolled resource consumption in the Virtual GPU Manager (nvidia.ko). By sending a specially-crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service.

CVE-2022-28192 CVSS:4.1

NVIDIA vGPU software is vulnerable to a denial of service, caused by an use-after-free in the Virtual GPU Manager (nvidia.ko). By sending a specially-crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service.

Impact

  • Denial of Service

Indicators Of Compromise

CVE

  • CVE-2022-28191
  • CVE-2022-28192

Affected Vendors

  • NVIDIA

Affected Products

  • NVIDIA vGPU software

Remediation

Refer to NVIDIA Security Advisory for patch, upgrade or suggested workaround information.
NVIDIA Security Advisory