Vulnerabilities > CVE-2024-0104 - Unspecified vulnerability in Nvidia products

CVSS 8.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

nvidia

NVD

Published: 2024-08-08

Updated: 2024-09-11

Summary

NVIDIA Mellanox OS, ONYX, Skyway, MetroX-2 and MetroX-3 XC contain a vulnerability in the LDAP AAA component, where a user can cause improper access. A successful exploit of this vulnerability might lead to information disclosure, data tampering, and escalation of privileges.

Vulnerable Configurations

Part	Description	Count
OS	Nvidia Nvidia Mlnx OS * Nvidia Mlnx GW * Nvidia Onyx * Nvidia Nvda OS XC *	5
Hardware	Nvidia Nvidia Metrox 2 - Nvidia Skyway - Nvidia Metrox 3 XC -	3

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5559