NVIDIA DGX H100 BMC contains a vulnerability in the host KVM daemon, where an authenticated local attacker may cause corruption of kernel memory. A successful exploit of this vulnerability may lead to arbitrary kernel code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Advisories
Source ID Title
EUVD EUVD EUVD-2023-29479 NVIDIA DGX H100 BMC contains a vulnerability in the host KVM daemon, where an authenticated local attacker may cause corruption of kernel memory. A successful exploit of this vulnerability may lead to arbitrary kernel code execution, denial of service, escalation of privileges, information disclosure, and data tampering.
Fixes

Solution

No solution given by the vendor.


Workaround

No workaround given by the vendor.

History

Tue, 24 Sep 2024 16:30:00 +0000

Type Values Removed Values Added
First Time appeared Nvidia dgx H100 Bmc
CPEs cpe:2.3:a:nvidia:dgx_h100_bmc:*:*:*:*:*:*:*:*
Vendors & Products Nvidia dgx H100 Bmc
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: nvidia

Published:

Updated: 2024-09-24T15:54:28.023Z

Reserved: 2023-02-07T02:57:25.081Z

Link: CVE-2023-25527

cve-icon Vulnrichment

Updated: 2024-08-02T11:25:18.676Z

cve-icon NVD

Status : Modified

Published: 2023-09-20T01:15:52.920

Modified: 2024-11-21T07:49:40.347

Link: CVE-2023-25527

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.