Vulnerabilities > Nvidia > DGX H100 Firmware > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-20 | CVE-2023-31010 | Improper Input Validation vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input validation. | 8.8 |
| 2023-09-20 | CVE-2023-31011 | Improper Input Validation vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC contains a vulnerability in the REST service where an attacker may cause improper input validation. | 8.8 |
| 2023-09-20 | CVE-2023-31012 | Improper Input Validation vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC contains a vulnerability in the REST service where an attacker may cause improper input validation. | 8.8 |
| 2023-09-20 | CVE-2023-31013 | Improper Input Validation vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC contains a vulnerability in the REST service, where an attacker may cause improper input validation. | 8.8 |
| 2023-09-20 | CVE-2023-31015 | Improper Authentication vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC contains a vulnerability in the REST service where a host user may cause as improper authentication issue. | 7.8 |
| 2023-09-20 | CVE-2023-25527 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC contains a vulnerability in the host KVM daemon, where an authenticated local attacker may cause corruption of kernel memory. | 7.8 |
| 2023-09-20 | CVE-2023-25529 | Information Exposure Through Discrepancy vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC and DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated attacker may cause a leak of another user’s session token by observing timing discrepancies between server responses. | 8.1 |
| 2023-09-20 | CVE-2023-25532 | Insufficiently Protected Credentials vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause insufficient protection of credentials. | 7.5 |
| 2023-09-20 | CVE-2023-31008 | Improper Input Validation vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input validation. | 7.8 |