Описание
NVIDIA BMC contains a vulnerability in SPX REST API, where an authorized attacker can inject arbitrary shell commands, which may lead to code execution, denial of service, information disclosure and data tampering.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 00.19.07 (исключая)
Одновременно
cpe:2.3:o:nvidia:dgx_a100_firmware:*:*:*:*:bmc:*:*:*
cpe:2.3:h:nvidia:dgx_a100:-:*:*:*:*:*:*:*
EPSS
Процентиль: 65%
0.00492
Низкий
7.2 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-78
CWE-78
Связанные уязвимости
CVSS3: 8.8
github
около 3 лет назад
NVIDIA BMC contains a vulnerability in SPX REST API, where an authorized attacker can inject arbitrary shell commands, which may lead to code execution, denial of service, information disclosure and data tampering.
EPSS
Процентиль: 65%
0.00492
Низкий
7.2 High
CVSS3
8.8 High
CVSS3
Дефекты
CWE-78
CWE-78