NVIDIA UFM Enterprise, UFM Appliance, and UFM CyberAI contain a vulnerability where an attacker can cause an improper authentication issue by sending a malformed request through the Ethernet management interface. A successful exploit of this vulnerability might lead to escalation of privileges, data tampering, denial of service, and information disclosure.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://nvidia.custhelp.com/app/answers/detail/a_id/5584 |
History
Tue, 10 Dec 2024 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Fri, 06 Dec 2024 20:00:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | NVIDIA UFM Enterprise, UFM Appliance, and UFM CyberAI contain a vulnerability where an attacker can cause an improper authentication issue by sending a malformed request through the Ethernet management interface. A successful exploit of this vulnerability might lead to escalation of privileges, data tampering, denial of service, and information disclosure. | |
Weaknesses | CWE-287 | |
References |
| |
Metrics |
cvssV3_1
|
MITRE
Status: PUBLISHED
Assigner: nvidia
Published: 2024-12-06T19:48:03.087Z
Updated: 2024-12-10T16:59:15.863Z
Reserved: 2023-12-02T00:42:40.373Z
Link: CVE-2024-0130
Vulnrichment
Updated: 2024-12-10T16:59:10.273Z
NVD
Status : Received
Published: 2024-12-06T20:15:23.543
Modified: 2024-12-06T20:15:23.543
Link: CVE-2024-0130
Redhat
No data.