First published: Fri Jan 13 2023(Updated: )
NVIDIA BMC contains a vulnerability in IPMI handler, where an unauthorized attacker can use certain oracles to guess a valid BMC username, which may lead to an information disclosure.
Credit: psirt@nvidia.com
Affected Software | Affected Version | How to fix |
---|---|---|
Nvidia Dgx A100 Firmware | <00.19.07 | |
NVIDIA DGX A100 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of this vulnerability is CVE-2022-42288.
The severity of CVE-2022-42288 is medium.
The affected software for CVE-2022-42288 is Nvidia Dgx A100 Firmware 00.19.07 in the BMC component.
The impact of CVE-2022-42288 is an unauthorized attacker can use certain oracles to guess a valid BMC username, leading to information disclosure.
No, NVIDIA DGX A100 is not affected by CVE-2022-42288.