NVIDIA DGX A100 contains a vulnerability in SBIOS in the BiosCfgTool, where a local user with elevated privileges can read and write beyond intended bounds in SMRAM, which may lead to code execution, escalation of privileges, denial of service, and information disclosure. The scope of impact can extend to other components.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5367 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: nvidia
Published: 2022-07-02T00:20:10
Updated: 2024-08-03T05:48:37.214Z
Reserved: 2022-03-30T00:00:00
Link: CVE-2022-28200
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-07-02T01:15:07.190
Modified: 2024-11-21T06:56:56.470
Link: CVE-2022-28200
Redhat
No data.