Vulnerabilities > Nvidia > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-22 | CVE-2023-25507 | OS Command Injection vulnerability in Nvidia BMC NVIDIA DGX-1 BMC contains a vulnerability in the SPX REST API, where an attacker with the appropriate level of authorization can inject arbitrary shell commands, which may lead to code execution, denial of service, information disclosure, and data tampering. | 8.8 |
| 2023-04-22 | CVE-2023-25508 | Path Traversal vulnerability in Nvidia BMC NVIDIA DGX-1 BMC contains a vulnerability in the IPMI handler, where an attacker with the appropriate level of authorization can upload and download arbitrary files under certain circumstances, which may lead to denial of service, escalation of privileges, information disclosure, and data tampering. | 7.8 |
| 2023-04-22 | CVE-2023-25509 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Nvidia Sbios NVIDIA DGX-1 SBIOS contains a vulnerability in Bds, which may lead to code execution, denial of service, and escalation of privileges. | 7.8 |
| 2023-04-01 | CVE-2023-0182 | Out-of-bounds Write vulnerability in Nvidia Virtual GPU NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer, where an out-of-bounds write can lead to denial of service, information disclosure, and data tampering. | 7.8 |
| 2023-04-01 | CVE-2023-0186 | Out-of-bounds Write vulnerability in Nvidia Virtual GPU NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer, where an out-of-bounds write can lead to denial of service and data tampering. | 7.1 |
| 2023-04-01 | CVE-2023-0192 | Unspecified vulnerability in Nvidia Virtual GPU NVIDIA GPU Display Driver for Windows contains a vulnerability in the kernel mode layer handler, where improper privilege management can lead to escalation of privileges and information disclosure. | 7.8 |
| 2023-04-01 | CVE-2023-0180 | Unspecified vulnerability in Nvidia Virtual GPU NVIDIA GPU Display Driver for Linux contains a vulnerability in a kernel mode layer handler, which may lead to denial of service or information disclosure. | 7.1 |
| 2023-04-01 | CVE-2023-0181 | Incorrect Default Permissions vulnerability in Nvidia Virtual GPU NVIDIA GPU Display Driver for Windows and Linux contains a vulnerability in a kernel mode layer handler, where memory permissions are not correctly checked, which may lead to denial of service and data tampering. | 7.1 |
| 2023-04-01 | CVE-2023-0183 | Out-of-bounds Write vulnerability in Nvidia Virtual GPU NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer where an out-of-bounds write can lead to denial of service and data tampering. | 7.1 |
| 2023-04-01 | CVE-2023-0185 | Incorrect Conversion between Numeric Types vulnerability in Nvidia Virtual GPU NVIDIA GPU Display Driver for Linux contains a vulnerability in the kernel mode layer, where sign conversion issuescasting an unsigned primitive to signed may lead to denial of service or information disclosure. | 7.1 |