CVE-2024-0105

CVSS 8.9 HIGHEPSS 0.3%CWE-274

NVIDIA ConnectX Firmware contains a vulnerability where an attacker may cause an improper handling of insufficient privileges issue. A successful exploit of this vulnerability may lead to denial of service, data tampering, and limited information disclosure.

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:H

Productos afectados

NVIDIA · BlueField 1 NVIDIA · BlueField GA NVIDIA · BlueField LTS22 NVIDIA · BlueField LTS23 NVIDIA · ConnectX4 NVIDIA · ConnectX4 LX NVIDIA · ConnectX GA NVIDIA · ConnectX LTS22 NVIDIA · ConnectX LTS23

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://nvidia.custhelp.com/app/answers/detail/a_id/5562