CVE-2023-25509

CWE-119Buffer Overflow3 documents3 sources
Severity
7.8HIGH
EPSS
0.0%
top 91.25%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Nvidia SbiosNvidia Nvidia DGX Servers
Timeline
PublishedApr 22

Description

NVIDIA DGX-1 SBIOS contains a vulnerability in Bds, which may lead to code execution, denial of service, and escalation of privileges.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:HExploitability: 0.8 | Impact: 5.2

Affected Packages2 packages

NVDnvidia/sbios< 52w_3a13
CVEListV5nvidia/nvidia_dgx_serversAll SBIOS prior to S2W_3A13

🔴Vulnerability Details

2
CVEList
CVE-2023-25509: NVIDIA DGX-1 SBIOS contains a vulnerability in Bds, which may lead to code execution, denial of service, and escalation of privileges2023-04-22
GHSA
GHSA-vv43-4c9g-wf8r: NVIDIA DGX-1 SBIOS contains a vulnerability in Bds, which may lead to code execution, denial of service, and escalation of privileges2023-04-22
CVE-2023-25509 (HIGH CVSS 7.8) | NVIDIA DGX-1 SBIOS contains a vulne | cvebase.io