Unrated severityNVD Advisory· Published Jul 4, 2022· Updated Aug 3, 2024

CVE-2022-31603

Description

NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with high privileges and preconditioned IpSecDxe global data can exploit improper validation of an array index to cause code execution, which may lead to denial of service, data integrity impact, and information disclosure.

Affected products

Nvidia/DGX A100cpe-rescue
Range: Versions prior to 22.5.5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

nvidia.custhelp.com/app/answers/detail/a_id/5367mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000