CVE-2023-31010: Input Validation
First published: Wed Sep 20 2023(Updated: )
NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause improper input validation. A successful exploit of this vulnerability may lead to escalation of privileges, information disclosure, and denial of service.
Credit: psirt@nvidia.com psirt@nvidia.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nvidia Dgx H100 Firmware | <23.08.18 | |
| NVIDIA DGX H100 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for the NVIDIA DGX H100 BMC vulnerability in IPMI?
The vulnerability ID for the NVIDIA DGX H100 BMC vulnerability in IPMI is CVE-2023-31010.
What is the severity score for CVE-2023-31010?
The severity score for CVE-2023-31010 is 8.8 (high).
What is the affected software for CVE-2023-31010?
The affected software for CVE-2023-31010 is Nvidia Dgx H100 Firmware version up to exclusive 23.08.18.
What are the potential consequences of exploiting CVE-2023-31010?
Exploiting CVE-2023-31010 may lead to escalation of privileges, information disclosure, and denial of service.
Where can I find more information about CVE-2023-31010?
You can find more information about CVE-2023-31010 at the following link: https://nvidia.custhelp.com/app/answers/detail/a_id/5473.
- collector/nvd-api
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/type
- agent/event
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/nvidia
- canonical/nvidia dgx h100 firmware
- canonical/nvidia dgx h100