VYPR
High severity7.5NVD Advisory· Published Jul 4, 2022· Updated Jun 17, 2026

CVE-2022-31600

CVE-2022-31600

Description

NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmmCore, where a user with high privileges can chain another vulnerability to this vulnerability, causing an integer overflow, possibly leading to code execution, escalation of privileges, denial of service, compromised integrity, and information disclosure. The scope of impact can extend to other components.

Affected products

2
  • Nvidia/DGX A100llm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: Versions prior to 22.5.5

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.