NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmmCore, where a user with high privileges can chain another vulnerability to this vulnerability, causing an integer overflow, possibly leading to code execution, escalation of privileges, denial of service, compromised integrity, and information disclosure. The scope of impact can extend to other components.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: nvidia

Published: 2022-07-04T18:10:19

Updated: 2024-08-03T07:26:01.049Z

Reserved: 2022-05-24T00:00:00

Link: CVE-2022-31600

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-07-04T18:15:08.003

Modified: 2024-11-21T07:04:49.450

Link: CVE-2022-31600

cve-icon Redhat

No data.