CVE-2022-42280: Path Traversal
First published: Fri Jan 13 2023(Updated: )
NVIDIA BMC contains a vulnerability in SPX REST auth handler, where an un-authorized attacker can exploit a path traversal, which may lead to authentication bypass.
Credit: psirt@nvidia.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NVIDIA BMC | <00.19.07 | |
| NVIDIA DGX A100 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this NVIDIA BMC vulnerability?
The vulnerability ID for this NVIDIA BMC vulnerability is CVE-2022-42280.
What is the title of this NVIDIA BMC vulnerability?
The title of this NVIDIA BMC vulnerability is 'NVIDIA BMC contains a vulnerability in SPX REST auth handler where an un-authorized attacker can exploit a path traversal, which may lead to authentication bypass.'
What is the severity of the NVIDIA BMC vulnerability?
The severity of the NVIDIA BMC vulnerability is high with a severity value of 7.8.
What software is affected by this NVIDIA BMC vulnerability?
The NVIDIA BMC vulnerability affects NVIDIA BMC version 00.19.07.
Is NVIDIA DGX A100 affected by this vulnerability?
No, NVIDIA DGX A100 is not affected by this vulnerability.
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/tags
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/nvidia
- canonical/nvidia bmc
- canonical/nvidia dgx a100