Unrated severityNVD Advisory· Published Oct 29, 2020· Updated Aug 4, 2024

CVE-2020-11486

Description

NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30, contain a vulnerability in the AMI BMC firmware in which software allows an attacker to upload or transfer files that can be automatically processed within the product's environment, which may lead to remote code execution.

Affected products

Nvidia/DGX-1llm-fuzzy
Range: <3.38.30
Nvidia/DGX serverscpe-rescue
Range: All DGX-1 Servers with BMC firmware versions prior to 3.38.30

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

nvidia.custhelp.com/app/answers/detail/a_id/5010mitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000