CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
49.1%
NVIDIA has released a software update for NVIDIA Cumulus Linux. This update addresses security issues that may lead to information disclosure and denial of service. To protect your system, download and install the latest version of NVIDIA Cumulus Linux from the NVIDIA Enterprise Support Portal.
Go to NVIDIA Product Security.
CVE IDs Addressed | Affected Product | Operating System | Affected Versions | Updated Version |
---|
CVE-2023-25525
|
Cumulus Linux
|
Cumulus Linux
|
All versions prior to 5.6.0
|
5.6.0
CVE-2023-25526
|
Cumulus Linux
|
Cumulus Linux
| All versions prior to 5.5.0 | 5.5.0
Earlier software branch releases that support this product are also affected. If you are using an earlier branch release, upgrade to the latest branch release.
NVIDIA thanks the following finders:
CVE-2023-25525, CVE-2023-25526: Marc Dovero