CVE-2023-31034
published 2024-01-12CVE-2023-31034: NVIDIA DGX A100 SBIOS contains a vulnerability where a local attacker can cause input validation checks to be bypassed by causing an integer overflow. A…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
NVIDIA DGX A100 SBIOS contains a vulnerability where a local attacker can cause input validation checks to be bypassed by causing an integer overflow. A successful exploit of this vulnerability may lead to denial of service, information disclosure, and data tampering.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nvidia | dgx_a100 | — | — |
| nvidia | dgx_a100_firmware | < 1.25 | 1.25 |