GPU vBIOS Vulnerability in NVIDIA Hopper HGX for 8-GPU
CVE-2024-0141

6.8MEDIUM

Key Information:

Vendor: Nvidia
Status: Nvidia Hopper Hgx 8-gpu
Vendor: CVE Published:; 5 March 2025

Summary

A vulnerability in the vBIOS of the NVIDIA Hopper HGX for 8-GPU could allow attackers with tenant-level GPU access to modify an unsupported registry. This may lead to potential service disruptions, causing denial of service for affected systems.

Affected Version(s)

NVIDIA Hopper HGX 8-GPU HMC HGX-22.10-1-rc67 (1.5.0)

NVIDIA Hopper HGX 8-GPU HMC HGX-22.10-1-rc63 (1.4.0)

NVIDIA Hopper HGX 8-GPU HMC HGX-22.10-1-rc59 (1.3.2)

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5561

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Mar 5, 2025
Vulnerability Reserved
Dec 2, 2023