CVE-2022-31614
HIGHNVIDIA Virtual GPU 11.0-11.8 - Use-After-Free in Virtual GPU Manager
Title source: llmDescription
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin) where it may double-free some resources. An attacker may exploit this vulnerability with other vulnerabilities to cause denial of service, code execution, and information disclosure.
References (1)
Core 1
Core References
Patch, Vendor Advisory x_refsource_misc
https://nvidia.custhelp.com/app/answers/detail/a_id/5383
Scores
CVSS v3
7.0
EPSS
0.0006
EPSS Percentile
18.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-415
Status
published
Products (3)
nvidia/virtual_gpu
14.0
nvidia/virtual_gpu
14.1
nvidia/virtual_gpu
11.0 - 11.8
Published
Aug 05, 2022
Tracked Since
Feb 18, 2026