Описание
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with elevated privileges and a preconditioned heap can exploit an out-of-bounds write vulnerability, which may lead to code execution, denial of service, data integrity impact, and information disclosure.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Одновременно
EPSS
6.4 Medium
CVSS3
6.7 Medium
CVSS3
4.4 Medium
CVSS2
Дефекты
Связанные уязвимости
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with elevated privileges and a preconditioned heap can exploit an out-of-bounds write vulnerability, which may lead to code execution, denial of service, data integrity impact, and information disclosure.
Уязвимость компонента SBIOS в IpSecDxe сервера NVIDIA DGX A100, позволяющая нарушителю выполнить произвольный код, вызвать отказ в обслуживании или оказать воздействие на целостность защищаемой информации
EPSS
6.4 Medium
CVSS3
6.7 Medium
CVSS3
4.4 Medium
CVSS2