Vulnerabilities > Nvidia
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-20 | CVE-2023-25525 | Unspecified vulnerability in Nvidia Cumulus Linux 5.5.0 NVIDIA Cumulus Linux contains a vulnerability in forwarding where a VxLAN-encapsulated IPv6 packet received on an SVI interface with DMAC/DIPv6 set to the link-local address of the SVI interface may be incorrectly forwarded. | 7.5 |
| 2023-09-20 | CVE-2023-25526 | Unspecified vulnerability in Nvidia Cumulus Linux NVIDIA Cumulus Linux contains a vulnerability in neighmgrd and nlmanager where an attacker on an adjacent network may cause an uncaught exception by injecting a crafted packet. low complexity nvidia | 6.5 |
| 2023-09-20 | CVE-2023-25527 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC contains a vulnerability in the host KVM daemon, where an authenticated local attacker may cause corruption of kernel memory. | 7.8 |
| 2023-09-20 | CVE-2023-25528 | Out-of-bounds Write vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 baseboard management controller (BMC) contains a vulnerability in a web server plugin, where an unauthenticated attacker may cause a stack overflow by sending a specially crafted network packet. | 9.8 |
| 2023-09-20 | CVE-2023-25529 | Information Exposure Through Discrepancy vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC and DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated attacker may cause a leak of another user’s session token by observing timing discrepancies between server responses. | 8.1 |
| 2023-09-20 | CVE-2023-25530 | Unspecified vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC contains a vulnerability in the KVM service, where an attacker may cause improper input validation. | 9.8 |
| 2023-09-20 | CVE-2023-25531 | Insufficiently Protected Credentials vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause insufficient protection of credentials. | 9.8 |
| 2023-09-20 | CVE-2023-25532 | Insufficiently Protected Credentials vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause insufficient protection of credentials. | 7.5 |
| 2023-09-20 | CVE-2023-25533 | Unspecified vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC contains a vulnerability in the web UI, where an attacker may cause improper input validation. | 9.8 |
| 2023-09-20 | CVE-2023-25534 | Unspecified vulnerability in Nvidia DGX H100 Firmware NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input validation. | 9.8 |