High severity7.2NVD Advisory· Published Apr 22, 2023· Updated Jun 17, 2026
CVE-2023-25507
CVE-2023-25507
Description
NVIDIA DGX-1 BMC contains a vulnerability in the SPX REST API, where an attacker with the appropriate level of authorization can inject arbitrary shell commands, which may lead to code execution, denial of service, information disclosure, and data tampering.
Affected products
2- Range: All BMC versions prior to 3.39.3
Patches
Vulnerability mechanics
References
1- nvidia.custhelp.com/app/answers/detail/a_id/5458nvdVendor Advisory
News mentions
0No linked articles in our index yet.