VYPR
Critical severity9.8NVD Advisory· Published Oct 29, 2020· Updated Jun 17, 2026

CVE-2020-11486

CVE-2020-11486

Description

NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which software allows an attacker to upload or transfer files that can be automatically processed within the product's environment, which may lead to remote code execution.

Affected products

2
  • Nvidia/DGXllm-fuzzy
    Range: <3.38.30
  • Range: All DGX-1 Servers with BMC firmware versions prior to 3.38.30

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.