CVE-2020-11483

2020-10-2903:35:30

nvidia

www.cve.org

9.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.1%

JSON

NVIDIA DGX servers, all DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06, contains a vulnerability in the AMI BMC firmware in which the firmware includes hard-coded credentials, which may lead to elevation of privileges or information disclosure.

CNA Affected

[
  {
    "product": "NVIDIA DGX Servers",
    "vendor": "NVIDIA",
    "versions": [
      {
        "status": "affected",
        "version": "All DGX-1 with BMC firmware versions prior to 3.38.30 and all DGX-2 with BMC firmware versions prior to 1.06.06"
      }
    ]
  }
]

References

nvidia.custhelp.com/app/answers/detail/a_id/5010