CVE-2022-21816

MEDIUM

NVIDIA vGPU < 2022 and Virtual GPU 8.0-8.10 - Denial of Service via GPU Interrupt Storm

Title source: llm

Description

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (nvidia.ko), where a user in the guest OS can cause a GPU interrupt storm on the hypervisor host, leading to a denial of service.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://nvidia.custhelp.com/app/answers/detail/a_id/5312

Scores

CVSS v3 5.5

EPSS 0.0003

EPSS Percentile 10.3%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-284 CWE-306

Status published

Products (2)

nvidia/cloud_gaming_virtual_gpu < 2022

nvidia/virtual_gpu 8.0 - 8.10

Published Feb 07, 2022

Tracked Since Feb 18, 2026