CVE
CVE-2023-31032
5.5MEDIUM
Summary
The NVIDIA DGX A100 SBIOS is vulnerable due to an issue where an attacker with local access can invoke a dynamic variable evaluation. This vulnerability can be exploited to cause a denial of service, disrupting the operation of the affected product. Users and organizations utilizing the DGX A100 system should be aware of this issue and take appropriate measures to mitigate any potential risks.
Affected Version(s)
DGX A100 All SBOIS versions prior to 1.25
References
CVSS V3.1
Score:
5.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved