142 matches found
CVE-2023-31037
NVIDIA Bluefield 2 and Bluefield 3 DPU BMC contains a vulnerability in ipmitool, where a root user may cause code injection by a network call. A successful exploit of this vulnerability may lead to code execution on the OS...
Code injection
NVIDIA Bluefield 2 and Bluefield 3 DPU BMC contains a vulnerability in ipmitool, where a root user may cause code injection by a network call. A successful exploit of this vulnerability may lead to code execution on the OS...
CVE-2023-31037
The CVE-2023-31037 issue affects NVIDIA BlueField 2 and BlueField 3 DPU BMC with a vulnerability in ipmitool that allows a root user to trigger code injection via a network call, potentially leading to OS code execution. Public details confirm the affected products are BlueField DPU BMCs and iden...
CVE-2023-31037
NVIDIA Bluefield 2 and Bluefield 3 DPU BMC contains a vulnerability in ipmitool, where a root user may cause code injection by a network call. A successful exploit of this vulnerability may lead to code execution on the OS...
CVE-2023-31037
NVIDIA Bluefield 2 and Bluefield 3 DPU BMC contains a vulnerability in ipmitool, where a root user may cause code injection by a network call. A successful exploit of this vulnerability may lead to code execution on the OS...
PT-2024-12258 · Nvidia · Nvidia Bluefield 2 +1
Name of the Vulnerable Software and Affected Versions: NVIDIA Bluefield 2 and Bluefield 3 DPU BMC affected versions not specified Description: The issue is related to a code injection vulnerability in ipmitool, where a root user may cause code injection by a network call, potentially leading to...
Security Bulletin: NVIDIA BlueField 2 and 3 BMC - January 2024
NVIDIA has released a firmware update for NVIDIA BlueField DPU Baseboard Management Controller BMC. To protect your system, download and install this firmware update from the NVIDIA DOCA Software Framework page. Go to NVIDIA Product Security. Details This section provides a summary of potential...
PT-2023-9633 · Nvidia · Nvidia Connectx Host Firmware
Name of the Vulnerable Software and Affected Versions: NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit DPU affected versions not specified Description: The issue is related to an improper handling of insufficient privileges, which may lead to denial of service, data tampering...
Ubuntu 20.04 LTS : Linux kernel (BlueField) vulnerabilities (USN-6442-1)
The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6442-1 advisory. Ross Lagerwall discovered that the Xen netback backend driver in the Linux kernel did not properly handle certain unusual packets from a paravirtualized...
Ubuntu: Security Advisory (USN-6442-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-6442-1: Linux kernel (BlueField) vulnerabilities
Ross Lagerwall discovered that the Xen netback backend driver in the Linux kernel did not properly handle certain unusual packets from a paravirtualized network frontend, leading to a buffer overflow. An attacker in a guest VM could use this to cause a denial of service host system crash or...
Ubuntu: Security Advisory (USN-6387-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-6397-1: Linux kernel (BlueField) vulnerabilities
Daniel Moghimi discovered that some IntelR Processors did not properly clear microarchitectural state after speculative execution of various instructions. A local unprivileged user could use this to obtain to sensitive information. CVE-2022-40982 Ruihan Li discovered that the bluetooth subsystem ...
CVE-2023-25519
NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit contains a vulnerability where a restricted host may cause an incorrect user management error. A successful exploit of this vulnerability may lead to escalation of privileges...
CVE-2023-25519
NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit contains a vulnerability where a restricted host may cause an incorrect user management error. A successful exploit of this vulnerability may lead to escalation of privileges...
CVE-2023-25519
CVE-2023-25519 affects NVIDIA’s ConnectX Host Firmware for the BlueField Data Processing Unit. The issue, described as a restricted-host induced incorrect user-management error, can lead to privilege escalation if exploited. The in-field impact is consistent with a total impact on confidentiality...
CVE-2023-25519
NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit contains a vulnerability where a restricted host may cause an incorrect user management error. A successful exploit of this vulnerability may lead to escalation of privileges...
CVE-2023-25519
NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit contains a vulnerability where a restricted host may cause an incorrect user management error. A successful exploit of this vulnerability may lead to escalation of privileges...
PT-2023-20131 · Nvidia · Nvidia Connectx Host Firmware
Name of the Vulnerable Software and Affected Versions: NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit affected versions not specified Description: The issue is related to a vulnerability in the NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit, where a...
Security Bulletin: NVIDIA BlueField Data Processing Unit - September 2023
NVIDIA has released a firmware update for the NVIDIA BlueField Data Processing Unit. This update addresses security issues that may lead to escalation of privileges. To protect your system, download and install this firmware update from the NVIDIA Networking Support page. Go to NVIDIA Product...