CVE-2023-31015
First published: Wed Sep 20 2023(Updated: )
NVIDIA DGX H100 BMC contains a vulnerability in the REST service where a host user may cause as improper authentication issue. A successful exploit of this vulnerability may lead to escalation of privileges, information disclosure, code execution, and denial of service.
Credit: psirt@nvidia.com psirt@nvidia.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Nvidia Dgx H100 Firmware | <23.08.18 | |
| NVIDIA DGX H100 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for NVIDIA DGX H100 BMC?
The vulnerability ID for NVIDIA DGX H100 BMC is CVE-2023-31015.
What is the severity rating of CVE-2023-31015?
CVE-2023-31015 has a severity rating of 7.8 (high).
What is the affected software for CVE-2023-31015?
The affected software for CVE-2023-31015 is NVIDIA DGX H100 BMC firmware version 23.08.18.
What are the potential impacts of exploiting CVE-2023-31015?
Exploiting CVE-2023-31015 may lead to escalation of privileges, information disclosure, code execution, and denial of service.
Where can I find more information about CVE-2023-31015?
You can find more information about CVE-2023-31015 at https://nvidia.custhelp.com/app/answers/detail/a_id/5473.
- collector/nvd-api
- collector/nvd-index
- agent/weakness
- agent/type
- agent/event
- agent/author
- agent/references
- agent/severity
- agent/description
- agent/softwarecombine
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/nvidia
- canonical/nvidia dgx h100 firmware
- canonical/nvidia dgx h100