Lucene search
K

142 matches found

OSV
OSV
added 2024/01/24 3:15 a.m.2 views

CVE-2023-31037

NVIDIA Bluefield 2 and Bluefield 3 DPU BMC contains a vulnerability in ipmitool, where a root user may cause code injection by a network call. A successful exploit of this vulnerability may lead to code execution on the OS...

7.2CVSS6.2AI score0.00746EPSS
Exploits0References1
Prion
Prion
added 2024/01/24 3:15 a.m.17 views

Code injection

NVIDIA Bluefield 2 and Bluefield 3 DPU BMC contains a vulnerability in ipmitool, where a root user may cause code injection by a network call. A successful exploit of this vulnerability may lead to code execution on the OS...

5.8CVSS7.8AI score0.00746EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/01/24 2:12 a.m.45 views

CVE-2023-31037

The CVE-2023-31037 issue affects NVIDIA BlueField 2 and BlueField 3 DPU BMC with a vulnerability in ipmitool that allows a root user to trigger code injection via a network call, potentially leading to OS code execution. Public details confirm the affected products are BlueField DPU BMCs and iden...

7.2CVSS7.3AI score0.00746EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/01/24 2:12 a.m.17 views

CVE-2023-31037

NVIDIA Bluefield 2 and Bluefield 3 DPU BMC contains a vulnerability in ipmitool, where a root user may cause code injection by a network call. A successful exploit of this vulnerability may lead to code execution on the OS...

7.2CVSS7.5AI score0.00746EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/01/24 2:12 a.m.7 views

CVE-2023-31037

NVIDIA Bluefield 2 and Bluefield 3 DPU BMC contains a vulnerability in ipmitool, where a root user may cause code injection by a network call. A successful exploit of this vulnerability may lead to code execution on the OS...

7.2CVSS7.3AI score0.00746EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/01/23 12:0 a.m.8 views

PT-2024-12258 · Nvidia · Nvidia Bluefield 2 +1

Name of the Vulnerable Software and Affected Versions: NVIDIA Bluefield 2 and Bluefield 3 DPU BMC affected versions not specified Description: The issue is related to a code injection vulnerability in ipmitool, where a root user may cause code injection by a network call, potentially leading to...

7.2CVSS7.1AI score0.00746EPSS
Exploits0References4
Nvidia
Nvidia
added 2024/01/22 12:0 a.m.32 views

Security Bulletin: NVIDIA BlueField 2 and 3 BMC - January 2024

NVIDIA has released a firmware update for NVIDIA BlueField DPU Baseboard Management Controller BMC. To protect your system, download and install this firmware update from the NVIDIA DOCA Software Framework page. Go to NVIDIA Product Security. Details This section provides a summary of potential...

7.2CVSS7.6AI score0.00746EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2023/12/02 12:0 a.m.3 views

PT-2023-9633 · Nvidia · Nvidia Connectx Host Firmware

Name of the Vulnerable Software and Affected Versions: NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit DPU affected versions not specified Description: The issue is related to an improper handling of insufficient privileges, which may lead to denial of service, data tampering...

8.7CVSS7.2AI score0.00165EPSS
Exploits0References14
Tenable Nessus
Tenable Nessus
added 2023/10/20 12:0 a.m.32 views

Ubuntu 20.04 LTS : Linux kernel (BlueField) vulnerabilities (USN-6442-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6442-1 advisory. Ross Lagerwall discovered that the Xen netback backend driver in the Linux kernel did not properly handle certain unusual packets from a paravirtualized...

7.8CVSS7.8AI score0.0095EPSS
Exploits5References10
OpenVAS
OpenVAS
added 2023/10/20 12:0 a.m.37 views

Ubuntu: Security Advisory (USN-6442-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.7AI score0.0095EPSS
Exploits5References2
Ubuntu
Ubuntu
added 2023/10/19 8:17 p.m.82 views

USN-6442-1: Linux kernel (BlueField) vulnerabilities

Ross Lagerwall discovered that the Xen netback backend driver in the Linux kernel did not properly handle certain unusual packets from a paravirtualized network frontend, leading to a buffer overflow. An attacker in a guest VM could use this to cause a denial of service host system crash or...

7.8CVSS7.5AI score0.0095EPSS
Exploits5
OpenVAS
OpenVAS
added 2023/09/27 12:0 a.m.33 views

Ubuntu: Security Advisory (USN-6387-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.12405EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2023/09/26 6:39 p.m.92 views

USN-6397-1: Linux kernel (BlueField) vulnerabilities

Daniel Moghimi discovered that some IntelR Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. CVE-2022-40982 Ruihan Li discovered that the bluetooth subsystem ...

10CVSS7.9AI score0.05794EPSS
Exploits5
OSV
OSV
added 2023/09/12 2:15 a.m.4 views

CVE-2023-25519

NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit contains a vulnerability where a restricted host may cause an incorrect user management error. A successful exploit of this vulnerability may lead to escalation of privileges...

7.8CVSS5.8AI score
Exploits0References2
NVD
NVD
added 2023/09/12 2:15 a.m.19 views

CVE-2023-25519

NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit contains a vulnerability where a restricted host may cause an incorrect user management error. A successful exploit of this vulnerability may lead to escalation of privileges...

7.8CVSS7.8AI score0.00155EPSS
Exploits0References2
CVE
CVE
added 2023/09/12 12:49 a.m.70 views

CVE-2023-25519

CVE-2023-25519 affects NVIDIA’s ConnectX Host Firmware for the BlueField Data Processing Unit. The issue, described as a restricted-host induced incorrect user-management error, can lead to privilege escalation if exploited. The in-field impact is consistent with a total impact on confidentiality...

7.8CVSS7.7AI score0.00155EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/09/12 12:49 a.m.20 views

CVE-2023-25519

NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit contains a vulnerability where a restricted host may cause an incorrect user management error. A successful exploit of this vulnerability may lead to escalation of privileges...

7.8CVSS8AI score0.00155EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/09/12 12:49 a.m.15 views

CVE-2023-25519

NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit contains a vulnerability where a restricted host may cause an incorrect user management error. A successful exploit of this vulnerability may lead to escalation of privileges...

7.8CVSS7.1AI score0.00155EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/09/07 12:0 a.m.12 views

PT-2023-20131 · Nvidia · Nvidia Connectx Host Firmware

Name of the Vulnerable Software and Affected Versions: NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit affected versions not specified Description: The issue is related to a vulnerability in the NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit, where a...

7.8CVSS7.5AI score0.00155EPSS
Exploits0References6
Nvidia
Nvidia
added 2023/09/06 12:0 a.m.33 views

Security Bulletin: NVIDIA BlueField Data Processing Unit - September 2023

NVIDIA has released a firmware update for the NVIDIA BlueField Data Processing Unit. This update addresses security issues that may lead to escalation of privileges. To protect your system, download and install this firmware update from the NVIDIA Networking Support page. Go to NVIDIA Product...

7.8CVSS8AI score0.00155EPSS
Exploits0
Rows per page
Query Builder