First published: Fri Jan 13 2023(Updated: )
NVIDIA BMC contains a vulnerability in SPX REST API, where an authorized attacker can access arbitrary files, which may lead to information disclosure.
Credit: psirt@nvidia.com
Affected Software | Affected Version | How to fix |
---|---|---|
NVIDIA BMC | <00.19.07 | |
NVIDIA DGX A100 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this NVIDIA BMC vulnerability is CVE-2022-42282.
The title of this NVIDIA BMC vulnerability is 'NVIDIA BMC contains a vulnerability in SPX REST API where an authorized attacker can access arbitrary files, which may lead to information disclosure.'
The severity of CVE-2022-42282 is medium (5.5).
The affected software for CVE-2022-42282 is NVIDIA BMC up to version 00.19.07.
An authorized attacker can exploit CVE-2022-42282 by accessing arbitrary files through the SPX REST API, potentially leading to information disclosure.