cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-31010,https://securityvulnerability.io/vulnerability/CVE-2023-31010,Input Validation Vulnerability in NVIDIA DGX H100 BMC,"The NVIDIA DGX H100 BMC suffers from an input validation flaw in the Intelligent Platform Management Interface (IPMI). This vulnerability allows an attacker to manipulate input data, potentially leading to unauthorized privilege escalation, exposure of sensitive information, and service disruptions. Systems relying on this functionality may be at risk, emphasizing the need for immediate attention and remediation measures.",Nvidia,Dgx H100 Bmc,6.8,MEDIUM,0.0007600000244565308,false,,false,false,false,,,false,false,,2023-09-20T02:15:00.000Z,0
CVE-2023-31011,https://securityvulnerability.io/vulnerability/CVE-2023-31011,Input Validation Vulnerability in NVIDIA DGX H100 BMC,"The NVIDIA DGX H100 Base Management Controller (BMC) has a vulnerability in its REST service that can be exploited by attackers to bypass input validation mechanisms. This may allow unauthorized users to escalate their privileges, potentially leading to unauthorized access to sensitive information. Proper input validation failures can have severe implications for system integrity and data confidentiality.",Nvidia,Dgx H100 Bmc,5.2,MEDIUM,0.0007600000244565308,false,,false,false,false,,,false,false,,2023-09-20T02:15:00.000Z,0
CVE-2023-31012,https://securityvulnerability.io/vulnerability/CVE-2023-31012,Improper Input Validation in NVIDIA DGX H100 BMC REST Service,"The NVIDIA DGX H100 BMC features a vulnerability in its REST service that allows an attacker to exploit improper input validation. This vulnerability can lead to unauthorized access, enabling potential privilege escalation and information disclosure. It highlights the importance of implementing robust input validation mechanisms to safeguard sensitive data and user privileges.",Nvidia,Dgx H100 Bmc,6.1,MEDIUM,0.0007600000244565308,false,,false,false,false,,,false,false,,2023-09-20T02:15:00.000Z,0
CVE-2023-31013,https://securityvulnerability.io/vulnerability/CVE-2023-31013,Improper Input Validation in NVIDIA DGX H100 BMC REST Service,"NVIDIA DGX H100 BMC has a vulnerability in its REST service that allows for improper input validation. This flaw could be exploited by an attacker, potentially leading to privilege escalation and exposing sensitive information.",Nvidia,Dgx H100 Bmc,6.1,MEDIUM,0.0007600000244565308,false,,false,false,false,,,false,false,,2023-09-20T02:15:00.000Z,0
CVE-2023-31015,https://securityvulnerability.io/vulnerability/CVE-2023-31015,Improper Authentication in NVIDIA DGX H100 BMC,"The NVIDIA DGX H100 BMC is affected by an improper authentication vulnerability in its REST service. This flaw allows a host user to potentially exploit the system, leading to serious consequences including privilege escalation, unauthorized information access, code execution, or even denial of service. Organizations using the DGX H100 should assess their exposure to this vulnerability and consider appropriate security measures.",Nvidia,Dgx H100 Bmc,6.6,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2023-09-20T02:15:00.000Z,0
CVE-2023-25532,https://securityvulnerability.io/vulnerability/CVE-2023-25532,Insufficient Credential Protection in NVIDIA DGX H100 BMC,"The NVIDIA DGX H100 BMC exhibits a vulnerability in its Intelligent Platform Management Interface (IPMI), which may allow an attacker to exploit insufficient protection of credentials. This could potentially lead to unauthorized access and the disclosure of sensitive information, compromising the integrity and confidentiality of the system.",Nvidia,Dgx H100 Bmc,6.5,MEDIUM,0.0013500000350177288,false,,false,false,false,,,false,false,,2023-09-20T01:15:00.000Z,0
CVE-2023-25533,https://securityvulnerability.io/vulnerability/CVE-2023-25533,Improper Input Validation Vulnerability in NVIDIA DGX H100 BMC Web UI,"The NVIDIA DGX H100 BMC suffers from a vulnerability in its web user interface, where the system fails to properly validate input data. This flaw could allow an attacker to exploit the interface, leading to potential information disclosure, unauthorized code execution, and escalation of privileges. As a result, the integrity and confidentiality of the affected systems may be compromised.",Nvidia,Dgx H100 Bmc,8.3,HIGH,0.0023900000378489494,false,,false,false,false,,,false,false,,2023-09-20T01:15:00.000Z,0
CVE-2023-25527,https://securityvulnerability.io/vulnerability/CVE-2023-25527,Local Kernel Memory Corruption Vulnerability in NVIDIA DGX H100 BMC,"The NVIDIA DGX H100 BMC is susceptible to a local vulnerability through the host KVM daemon, allowing an authenticated attacker to manipulate kernel memory. Exploiting this weakness may result in the execution of arbitrary kernel code, potential denial of service, privilege escalation, and even unauthorized access to sensitive information, leading to data tampering.",Nvidia,Dgx H100 Bmc,7.8,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-09-20T01:15:00.000Z,0
CVE-2023-31008,https://securityvulnerability.io/vulnerability/CVE-2023-31008,Improper Input Validation in NVIDIA DGX H100 BMC Components,"The NVIDIA DGX H100 BMC experiences an issue with improper input validation within its IPMI implementation. Exploitation of this vulnerability could allow an attacker to execute arbitrary code, provoke denial of service conditions, escalate privileges, or disclose sensitive information. Given the critical role of BMCs in managing hardware, this vulnerability poses significant security implications for systems relying on the DGX H100 infrastructure.",Nvidia,Dgx H100 Bmc,7.3,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2023-09-20T01:15:00.000Z,0
CVE-2023-31009,https://securityvulnerability.io/vulnerability/CVE-2023-31009,REST Service Input Validation Flaw in NVIDIA DGX H100 BMC,"The NVIDIA DGX H100 BMC features a vulnerability in its REST service that may lead to improper input validation. This flaw allows attackers to execute code remotely, potentially leading to denial of service, privilege escalation, and unauthorized access to sensitive information.",Nvidia,Dgx H100 Bmc,8.3,HIGH,0.0023900000378489494,false,,false,false,false,,,false,false,,2023-09-20T01:15:00.000Z,0
CVE-2023-25534,https://securityvulnerability.io/vulnerability/CVE-2023-25534,Improper Input Validation Vulnerability in NVIDIA DGX H100 BMC,"The NVIDIA DGX H100 BMC is susceptible to a vulnerability in its Intelligent Platform Management Interface (IPMI). This weakness allows an attacker to exploit improper input validation. If successfully exploited, consequences could include unauthorized code execution, denial of service, privilege escalation, potential information disclosure, and data tampering. Organizations using the DGX H100 are advised to assess their security posture and apply appropriate mitigations as necessary.",Nvidia,Dgx H100 Bmc,5.7,MEDIUM,0.0023900000378489494,false,,false,false,false,,,false,false,,2023-09-20T01:15:00.000Z,0
CVE-2023-25528,https://securityvulnerability.io/vulnerability/CVE-2023-25528,Unauthenticated Remote Code Execution Risk in NVIDIA DGX H100 BMC Web Server,"The NVIDIA DGX H100 baseboard management controller (BMC) features a vulnerability within its web server plugin that could be exploited by an unauthenticated attacker. By sending a specially crafted network packet, the attacker may trigger a stack overflow, potentially allowing for arbitrary code execution. This vulnerability poses various risks including denial of service, information disclosure, and data tampering, making it crucial for users to upgrade their systems to mitigate potential threats. For further details, refer to the vendor's support documentation.",Nvidia,Dgx H100 Bmc,8.8,HIGH,0.002360000042244792,false,,false,false,false,,,false,false,,2023-09-20T01:15:00.000Z,0
CVE-2023-25529,https://securityvulnerability.io/vulnerability/CVE-2023-25529,Information Disclosure Vulnerability in NVIDIA DGX H100 BMC,"The NVIDIA DGX H100 BMC features a vulnerability within the host KVM daemon, which allows an unauthenticated attacker to potentially exploit timing discrepancies in server responses to access another user's session token. This could lead to unauthorized information disclosure, escalation of privileges, and possible data tampering, compromising the security and integrity of users’ sessions.",NVIDIA,"DGX H100 BMC,DGX A100 BMC",8.1,HIGH,0.001930000027641654,false,,false,false,false,,,false,false,,2023-09-20T01:15:00.000Z,0
CVE-2023-25530,https://securityvulnerability.io/vulnerability/CVE-2023-25530,Input Validation Flaw in NVIDIA DGX H100 BMC KVM Service,"The NVIDIA DGX H100 BMC has a flaw in its KVM service that allows for improper input validation. An attacker exploiting this vulnerability could potentially execute arbitrary code, cause a denial of service, gain elevated privileges, or disclose sensitive information. Proper input validation measures are crucial to mitigate the risks associated with this vulnerability.",Nvidia,Dgx H100 Bmc,8,HIGH,0.0023900000378489494,false,,false,false,false,,,false,false,,2023-09-20T01:15:00.000Z,0
CVE-2023-25531,https://securityvulnerability.io/vulnerability/CVE-2023-25531,Insufficient Credential Protection in NVIDIA DGX H100 BMC,"The NVIDIA DGX H100 Baseboard Management Controller (BMC) has a flaw within the Intelligent Platform Management Interface (IPMI) that results in insufficient credential protection. This vulnerability could potentially allow an attacker to exploit the system, leading to various negative outcomes including code execution, denial of service, information disclosure, and privilege escalation. It’s crucial for users to update their systems and implement security measures to mitigate the risks associated with this vulnerability.",Nvidia,Dgx H100 Bmc,7.6,HIGH,0.002090000081807375,false,,false,false,false,,,false,false,,2023-09-20T01:15:00.000Z,0