Описание
NVIDIA BMC contains a vulnerability in IPMI handler, where an authorized attacker can upload and download arbitrary files under certain circumstances, which may lead to denial of service, escalation of privileges, information disclosure and data tampering.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 00.19.07 (исключая)
Одновременно
cpe:2.3:o:nvidia:bmc:*:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:dgx_a100:-:*:*:*:*:*:*:*
EPSS
Процентиль: 20%
0.00064
Низкий
6 Medium
CVSS3
7.8 High
CVSS3
Дефекты
CWE-22
CWE-434
Связанные уязвимости
CVSS3: 7.8
github
около 3 лет назад
NVIDIA BMC contains a vulnerability in IPMI handler, where an authorized attacker can upload and download arbitrary files under certain circumstances, which may lead to denial of service, escalation of privileges, information disclosure and data tampering.
EPSS
Процентиль: 20%
0.00064
Низкий
6 Medium
CVSS3
7.8 High
CVSS3
Дефекты
CWE-22
CWE-434