CVE-2024-0113

CVSS 7.5 HIGHEPSS 1.0%CWE-35

NVIDIA Mellanox OS, ONYX, Skyway, and MetroX-3 XCC contain a vulnerability in the web support, where an attacker can cause a CGI path traversal by a specially crafted URI. A successful exploit of this vulnerability might lead to escalation of privileges and information disclosure.

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Productos afectados

NVIDIA · Mellanox OS NVIDIA · MetroX-2 NVIDIA · MetroX-3 XC NVIDIA · Skyway

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://nvidia.custhelp.com/app/answers/detail/a_id/5563