Описание
NVIDIA DGX-2 contains a vulnerability in OFBD where a user with high privileges and a pre-conditioned heap can cause an access beyond a buffers end, which may lead to code execution, escalation of privileges, denial of service, and information disclosure.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 1.08.00 (исключая)
Одновременно
cpe:2.3:o:nvidia:bmc:*:*:*:*:*:*:*:*
cpe:2.3:h:nvidia:dgx-2:-:*:*:*:*:*:*:*
EPSS
Процентиль: 14%
0.00045
Низкий
7.5 High
CVSS3
6.7 Medium
CVSS3
Дефекты
CWE-788
CWE-787
Связанные уязвимости
CVSS3: 7.5
github
почти 3 года назад
NVIDIA DGX-2 contains a vulnerability in OFBD where a user with high privileges and a pre-conditioned heap can cause an access beyond a buffers end, which may lead to code execution, escalation of privileges, denial of service, and information disclosure.
EPSS
Процентиль: 14%
0.00045
Низкий
7.5 High
CVSS3
6.7 Medium
CVSS3
Дефекты
CWE-788
CWE-787