Vulnerabilities > CVE-2023-0204 - Improper Handling of Exceptional Conditions vulnerability in Nvidia Connectx Firmware

CVSS 7.7 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

nvidia

CWE-755

NVD

Published: 2023-04-22

Updated: 2023-05-02

Summary

NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware, where an unprivileged user can cause improper handling of exceptional conditions, which may lead to denial of service.

Vulnerable Configurations

Part	Description	Count
OS	Nvidia Nvidia Connectx Firmware -	1
Hardware	Nvidia Nvidia Connectx 5 - Nvidia Connectx 6 - Nvidia Connectx 6 DX -	3

Common Weakness Enumeration (CWE)

CWE-755 - Improper Handling of Exceptional Conditions

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5459