NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with high privileges and preconditioned IpSecDxe global data can exploit improper validation of an array index to cause code execution, which may lead to denial of service, data integrity impact, and information disclosure.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5367 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: nvidia
Published: 2022-07-04T18:10:36
Updated: 2024-08-03T07:26:00.938Z
Reserved: 2022-05-24T00:00:00
Link: CVE-2022-31603
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-07-04T18:15:08.207
Modified: 2024-11-21T07:04:49.817
Link: CVE-2022-31603
Redhat
No data.