CVE-2022-42261

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2022-42261

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-42261.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2022-42261

Downstream

UBUNTU-CVE-2022-42261

Published

2022-12-30T23:15:11Z

Modified

2025-08-09T19:01:27Z

Severity

7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where an input index is not validated, which may lead to buffer overrun, which in turn may cause data tampering, information disclosure, or denial of service.

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5415
https://security.gentoo.org/glsa/202310-02

CVE-2022-42261

Affected packages