CVE-2024-0104
published 2024-08-08CVE-2024-0104: NVIDIA Mellanox OS, ONYX, Skyway, MetroX-2 and MetroX-3 XC contain a vulnerability in the LDAP AAA component, where a user can cause improper access. A…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
NVIDIA Mellanox OS, ONYX, Skyway, MetroX-2 and MetroX-3 XC contain a vulnerability in the LDAP AAA component, where a user can cause improper access. A successful exploit of this vulnerability might lead to information disclosure, data tampering, and escalation of privileges.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| nvidia | mellanox_os | — | — |
| nvidia | metrox-2 | — | — |
| nvidia | metrox-3_xc | — | — |
| nvidia | mlnx-gw | < 8.2.2000 | 8.2.2000 |
| nvidia | mlnx-os | < 3.11.2002 | 3.11.2002 |
| nvidia | mlnx-os | < 3.11.2202 | 3.11.2202 |
| nvidia | nvda-os_xc | < 18.2.2000 | 18.2.2000 |
| nvidia | onyx | < 3.10.4402 | 3.10.4402 |
| nvidia | onyx | — | — |
| nvidia | skyway | — | — |