Описание
NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmmCore, where a user with high privileges can chain another vulnerability to this vulnerability, causing an integer overflow, possibly leading to code execution, escalation of privileges, denial of service, compromised integrity, and information disclosure. The scope of impact can extend to other components.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Одновременно
EPSS
7.5 High
CVSS3
8.2 High
CVSS3
4.6 Medium
CVSS2
Дефекты
Связанные уязвимости
NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmmCore, where a user with high privileges can chain another vulnerability to this vulnerability, causing an integer overflow, possibly leading to code execution, escalation of privileges, denial of service, compromised integrity, and information disclosure. The scope of impact can extend to other components.
Уязвимость компонента SBIOS в SmmCore сервера NVIDIA DGX A100, позволяющая нарушителю выполнить произвольный код, вызвать отказ в обслуживании, оказать воздействие на конфиденциальность и целостность защищаемой информации
EPSS
7.5 High
CVSS3
8.2 High
CVSS3
4.6 Medium
CVSS2