Lucene search
NvidiaCVELIST:CVE-2023-0207HistoryApr 22, 2023 - 2:28 a.m.
CVE-2023-0207
2023-04-2202:28:08
CWE-732
nvidia
www.cve.org
nvidia dgx-2
sbios
privilege escalation
vulnerability
denial of service
7.5 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
NVIDIA DGX-2 SBIOS contains a vulnerability where an attacker may modify the ServerSetup NVRAM variable at runtime by executing privileged code. A successful exploit of this vulnerability may lead to denial of service.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "NVIDIA DGX servers",
"vendor": "NVIDIA",
"versions": [
{
"status": "affected",
"version": "All SBIOS versions prior to 0.33"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2023-04-22 03:15:00
cve
cve
CVE-2023-0207
2023-04-22 03:15:09
nvd
nvd
CVE-2023-0207
2023-04-22 03:15:09
7.5 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
9.1%
Related for CVELIST:CVE-2023-0207