Volerion logoVolerion
Volerion logoVolerion

NVIDIA vGPU Software Uninitialized Pointer Vulnerability in Virtual GPU Manager Allowing Code Execution and Privilege Escalation

Vulnerability

A vulnerability exists in NVIDIA vGPU software's Virtual GPU Manager, where a malicious guest could exploit uninitialized pointer access. This vulnerability affects several components and versions of the vGPU software, potentially leading to unauthorized code execution, privilege escalation, information disclosure, data tampering, and denial of service.

Impact

Exploitation of this vulnerability could result in uninitialized pointer access, allowing for arbitrary code execution, privilege escalation, and causing a denial of service. Additionally, it could lead to unauthorized information disclosure and data tampering.

Remediation

Users can update to vGPU version 19.2 for Windows or 580.95.05 for Linux. For NVIDIA Cloud Gaming, the September 2025 release includes the necessary updates. Instructions for downloading these updates are available through the NVIDIA Licensing Portal.

Added: Oct 23, 2025, 7:24 PM
Updated: Oct 23, 2025, 7:24 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
7.5
exploitability
3.3
remediation
7.7
relevance
0.8
threat
0.0
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.