VYPR
Medium severity6.4NVD Advisory· Published Jul 4, 2022· Updated Jun 17, 2026

CVE-2022-31602

CVE-2022-31602

Description

NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with elevated privileges and a preconditioned heap can exploit an out-of-bounds write vulnerability, which may lead to code execution, denial of service, data integrity impact, and information disclosure.

Affected products

2
  • Nvidia/DGX A100llm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: Versions prior to 22.5.5

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.