DGX A100 BMC

CVEs (19)

CVE	Vendor / Product	CVSS	Published	Description
CVE-2023-31025	Nvidia DGX A100 BMC	—	Jan 12, 2024	NVIDIA DGX A100 BMC contains a vulnerability where an attacker may cause an LDAP user injection. A successful exploit of this vulnerability may lead to information disclosure.
CVE-2023-31033	Nvidia DGX A100 BMC	—	Jan 12, 2024	NVIDIA DGX A100 BMC contains a vulnerability where a user may cause a missing authentication issue for a critical function by an adjacent network . A successful exploit of this vulnerability may lead to escalation of privileges, code execution, denial of service, information…
CVE-2023-31024	Nvidia DGX A100 BMC	—	Jan 12, 2024	NVIDIA DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated attacker may cause stack memory corruption by sending a specially crafted network packet. A successful exploit of this vulnerability may lead to arbitrary code execution, denial of…
CVE-2023-31030	Nvidia DGX A100 BMC	—	Jan 12, 2024	NVIDIA DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated attacker may cause a stack overflow by sending a specially crafted network packet. A successful exploit of this vulnerability may lead to arbitrary code execution, denial of service,…
CVE-2023-31015	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 BMC contains a vulnerability in the REST service where a host user may cause as improper authentication issue. A successful exploit of this vulnerability may lead to escalation of privileges, information disclosure, code execution, and denial of service.
CVE-2023-31013	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 BMC contains a vulnerability in the REST service, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to escalation of privileges and information disclosure.
CVE-2023-31012	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 BMC contains a vulnerability in the REST service where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to escalation of privileges and information disclosure.
CVE-2023-31011	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 BMC contains a vulnerability in the REST service where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to escalation of privileges and information disclosure.
CVE-2023-31010	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to escalation of privileges, information disclosure, and denial of service.
CVE-2023-31009	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 BMC contains a vulnerability in the REST service, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, and information disclosure.
CVE-2023-31008	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to code execution, denial of services, escalation of privileges, and information disclosure.
CVE-2023-25534	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
CVE-2023-25533	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 BMC contains a vulnerability in the web UI, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to information disclosure, code execution, and escalation of privileges.
CVE-2023-25532	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause insufficient protection of credentials. A successful exploit of this vulnerability may lead to information disclosure.
CVE-2023-25531	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause insufficient protection of credentials. A successful exploit of this vulnerability may lead to code execution, denial of service, information disclosure, and escalation of privileges.
CVE-2023-25530	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 BMC contains a vulnerability in the KVM service, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, and information disclosure.
CVE-2023-25529	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 BMC and DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated attacker may cause a leak of another user’s session token by observing timing discrepancies between server responses. A successful exploit of this vulnerability may…
CVE-2023-25528	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 baseboard management controller (BMC) contains a vulnerability in a web server plugin, where an unauthenticated attacker may cause a stack overflow by sending a specially crafted network packet. A successful exploit of this vulnerability may lead to arbitrary…
CVE-2023-25527	Nvidia DGX A100 BMC	—	Sep 20, 2023	NVIDIA DGX H100 BMC contains a vulnerability in the host KVM daemon, where an authenticated local attacker may cause corruption of kernel memory. A successful exploit of this vulnerability may lead to arbitrary kernel code execution, denial of service, escalation of privileges,…

CVE-2023-31025Jan 12, 2024
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX A100 BMC contains a vulnerability where an attacker may cause an LDAP user injection. A successful exploit of this vulnerability may lead to information disclosure.
CVE-2023-31033Jan 12, 2024
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX A100 BMC contains a vulnerability where a user may cause a missing authentication issue for a critical function by an adjacent network . A successful exploit of this vulnerability may lead to escalation of privileges, code execution, denial of service, information…
CVE-2023-31024Jan 12, 2024
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated attacker may cause stack memory corruption by sending a specially crafted network packet. A successful exploit of this vulnerability may lead to arbitrary code execution, denial of…
CVE-2023-31030Jan 12, 2024
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated attacker may cause a stack overflow by sending a specially crafted network packet. A successful exploit of this vulnerability may lead to arbitrary code execution, denial of service,…
CVE-2023-31015Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 BMC contains a vulnerability in the REST service where a host user may cause as improper authentication issue. A successful exploit of this vulnerability may lead to escalation of privileges, information disclosure, code execution, and denial of service.
CVE-2023-31013Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 BMC contains a vulnerability in the REST service, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to escalation of privileges and information disclosure.
CVE-2023-31012Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 BMC contains a vulnerability in the REST service where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to escalation of privileges and information disclosure.
CVE-2023-31011Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 BMC contains a vulnerability in the REST service where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to escalation of privileges and information disclosure.
CVE-2023-31010Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to escalation of privileges, information disclosure, and denial of service.
CVE-2023-31009Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 BMC contains a vulnerability in the REST service, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, and information disclosure.
CVE-2023-31008Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to code execution, denial of services, escalation of privileges, and information disclosure.
CVE-2023-25534Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
CVE-2023-25533Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 BMC contains a vulnerability in the web UI, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to information disclosure, code execution, and escalation of privileges.
CVE-2023-25532Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause insufficient protection of credentials. A successful exploit of this vulnerability may lead to information disclosure.
CVE-2023-25531Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause insufficient protection of credentials. A successful exploit of this vulnerability may lead to code execution, denial of service, information disclosure, and escalation of privileges.
CVE-2023-25530Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 BMC contains a vulnerability in the KVM service, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, and information disclosure.
CVE-2023-25529Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 BMC and DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated attacker may cause a leak of another user’s session token by observing timing discrepancies between server responses. A successful exploit of this vulnerability may…
CVE-2023-25528Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 baseboard management controller (BMC) contains a vulnerability in a web server plugin, where an unauthenticated attacker may cause a stack overflow by sending a specially crafted network packet. A successful exploit of this vulnerability may lead to arbitrary…
CVE-2023-25527Sep 20, 2023
Nvidia
DGX A100 BMC
risk 0.00cvss —epss 0.00
NVIDIA DGX H100 BMC contains a vulnerability in the host KVM daemon, where an authenticated local attacker may cause corruption of kernel memory. A successful exploit of this vulnerability may lead to arbitrary kernel code execution, denial of service, escalation of privileges,…