Vulnerabilities > Nvidia > BMC > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-22 | CVE-2023-0200 | Out-of-bounds Write vulnerability in Nvidia BMC NVIDIA DGX-2 contains a vulnerability in OFBD where a user with high privileges and a pre-conditioned heap can cause an access beyond a buffers end, which may lead to code execution, escalation of privileges, denial of service, and information disclosure. | 6.7 |
| 2023-04-22 | CVE-2023-0201 | Out-of-bounds Write vulnerability in Nvidia BMC NVIDIA DGX-2 SBIOS contains a vulnerability in Bds, where a user with high privileges can cause a write beyond the bounds of an indexable resource, which may lead to code execution, denial of service, compromised integrity, and information disclosure. | 6.7 |
| 2023-01-13 | CVE-2022-42282 | Unspecified vulnerability in Nvidia BMC NVIDIA BMC contains a vulnerability in SPX REST API, where an authorized attacker can access arbitrary files, which may lead to information disclosure. | 5.5 |
| 2023-01-13 | CVE-2022-42284 | Cleartext Storage of Sensitive Information vulnerability in Nvidia BMC NVIDIA BMC stores user passwords in an obfuscated form in a database accessible by the host. | 5.5 |