First published: Fri Jan 13 2023(Updated: )
NVIDIA BMC stores user passwords in an obfuscated form in a database accessible by the host. This may lead to a credentials exposure.
Credit: psirt@nvidia.com
Affected Software | Affected Version | How to fix |
---|---|---|
NVIDIA BMC | <00.19.07 | |
NVIDIA DGX A100 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this NVIDIA BMC vulnerability is CVE-2022-42284.
The severity of CVE-2022-42284 is medium with a severity value of 5.5.
The affected software for CVE-2022-42284 is NVIDIA BMC version up to and excluding 00.19.07.
The impact of CVE-2022-42284 is the potential exposure of user credentials due to the storage of passwords in an obfuscated form in a database accessible by the host.
More information about CVE-2022-42284 can be found at this link: https://nvidia.custhelp.com/app/answers/detail/a_id/5435