NVIDIA vGPU software for Windows and Linux contains a vulnerability where unprivileged users could execute privileged operations on the host. A successful exploit of this vulnerability might lead to data tampering, escalation of privileges, and denial of service.
A product incorrectly assigns a privilege to a particular actor, creating an unintended sphere of control for that actor.