CVE-2026-24218

NVIDIA DGX OS contains a vulnerability in the factory provisioning process, where the cloning of a base image causes identical SSH host keys to be deployed across multiple systems. The sharing of cryptographic identifiers across all similarly provisioned systems enables host impersonation or...

CVE-2025-33191

CVE-2025-33191 affects NVIDIA DGX Spark GB10 OSROOT firmware. The vulnerability is an invalid memory read in OSROOT firmware, with potential denial of service. Public data describes it as a local attack vector (AV:L) with low attack complexity (AC:L) and no user interaction required (UI:N); privi...

PT-2025-48055

NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware, where an attacker could cause improper processing of input data. A successful exploit of this vulnerability might lead to information disclosure or denial of service...

NVIDIA DGX Security Vulnerability

NVIDIA DGX is a high-performance workstation for deep learning applications from NVIDIA. A security vulnerability exists in the NVIDIA DGX A100 Servers, which stems from an attacker could lead to an SMI markup vulnerability that could be used to execute arbitrary code at the SMM level...

NVIDIA DGX Security Vulnerability

NVIDIA DGX is a high-performance workstation for deep learning applications from NVIDIA. A security vulnerability exists in the NVIDIA DGX H100 BMC, which stems from a security flaw in IPMI that can be exploited by an attacker to cause an information leak...