Описание
DGX A100 SBIOS contains a vulnerability in the Pre-EFI Initialization (PEI)phase, where a privileged user can disable SPI flash protection, which may lead to denial of service, escalation of privileges, or data tampering.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.18 (исключая)
Одновременно
cpe:2.3:o:nvidia:sbios:*:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:dgx_a100:-:*:*:*:*:*:*:*
EPSS
Процентиль: 13%
0.00044
Низкий
6 Medium
CVSS3
7.8 High
CVSS3
Дефекты
CWE-1231
NVD-CWE-Other
Связанные уязвимости
CVSS3: 7.8
github
около 3 лет назад
DGX A100 SBIOS contains a vulnerability in the Pre-EFI Initialization (PEI)phase, where a privileged user can disable SPI flash protection, which may lead to denial of service, escalation of privileges, or data tampering.
EPSS
Процентиль: 13%
0.00044
Низкий
6 Medium
CVSS3
7.8 High
CVSS3
Дефекты
CWE-1231
NVD-CWE-Other