Nvidia Mellanox Os vulnerabilities
3 known vulnerabilities affecting nvidia/mellanox_os.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3
Vulnerabilities
Page 1 of 1
CVE-2024-0113HIGHCVSS 8.8vAll versions prior to and including 3.11.4000vAll versions prior to and including 3.11.2200+1 more2024-08-12
CVE-2024-0113 [HIGH] CWE-35 CVE-2024-0113: NVIDIA Mellanox OS, ONYX, Skyway, and MetroX-3 XCC contain a vulnerability in the web support, where
NVIDIA Mellanox OS, ONYX, Skyway, and MetroX-3 XCC contain a vulnerability in the web support, where an attacker can cause a CGI path traversal by a specially crafted URI. A successful exploit of this vulnerability might lead to escalation of privileges and information disclosure.
cvelistv5nvd
CVE-2024-0104HIGHCVSS 8.8vAll versions prior to and including 3.11.21002024-08-08
CVE-2024-0104 [MEDIUM] CWE-284 CVE-2024-0104: NVIDIA Mellanox OS, ONYX, Skyway, MetroX-2 and MetroX-3 XC contain a vulnerability in the LDAP AAA c
NVIDIA Mellanox OS, ONYX, Skyway, MetroX-2 and MetroX-3 XC contain a vulnerability in the LDAP AAA component, where a user can cause improper access. A successful exploit of this vulnerability might lead to information disclosure, data tampering, and escalation of privileges.
cvelistv5nvd
CVE-2024-0101HIGHCVSS 7.5vAll versions prior to and including 3.11.10002024-08-08
CVE-2024-0101 [HIGH] CWE-693 CVE-2024-0101: NVIDIA Mellanox OS, ONYX, Skyway, MetroX-2 and MetroX-3 XC contain a vulnerability in ipfilter, wher
NVIDIA Mellanox OS, ONYX, Skyway, MetroX-2 and MetroX-3 XC contain a vulnerability in ipfilter, where improper ipfilter definitions could enable an attacker to cause a failure by attacking the switch. A successful exploit of this vulnerability might lead to denial of service.
cvelistv5nvd