CVE-2022-42281
published 2023-01-13CVE-2022-42281: NVIDIA DGX A100 contains a vulnerability in SBIOS in the FsRecovery, which may allow a highly privileged local attacker to cause an out-of-bounds write, which…
medium6.7CVSS 3.1
AVLACLPRHUINSUCHIHAH
NVIDIA DGX A100 contains a vulnerability in SBIOS in the FsRecovery, which may allow a highly privileged local attacker to cause an out-of-bounds write, which may lead to code execution, denial of service, compromised integrity, and information disclosure.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nvidia | dgx_a100_firmware | < 1.18 | 1.18 |
| nvidia | nvidia_dgx_servers | — | — |