Lucene search
+L

156 matches found

NVD
NVD
added 2023/01/13 2:15 a.m.28 views

CVE-2022-42281

NVIDIA DGX A100 contains a vulnerability in SBIOS in the FsRecovery, which may allow a highly privileged local attacker to cause an out-of-bounds write, which may lead to code execution, denial of service, compromised integrity, and information disclosure...

6.7CVSS6.4AI score0.00234EPSS
Exploits0References1
NVD
NVD
added 2023/01/13 2:15 a.m.33 views

CVE-2022-42285

DGX A100 SBIOS contains a vulnerability in the Pre-EFI Initialization PEIphase, where a privileged user can disable SPI flash protection, which may lead to denial of service, escalation of privileges, or data tampering...

7.8CVSS6.5AI score0.00154EPSS
Exploits0References1
NVD
NVD
added 2023/01/13 2:15 a.m.30 views

CVE-2022-42277

NVIDIA DGX Station contains a vulnerability in SBIOS in the SmiFlash, where a local user with elevated privileges can read, write and erase flash, which may lead to code execution, escalation of privileges, denial of service, and information disclosure. The scope of impact can extend to other...

8.2CVSS7.8AI score0.00184EPSS
Exploits0References1
NVD
NVD
added 2023/01/13 2:15 a.m.28 views

CVE-2022-42276

NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmiFlash, where a local user with elevated privileges can read, write and erase flash, which may lead to code execution, escalation of privileges, denial of service, and information disclosure. The scope of impact can extend to other...

8.2CVSS7.8AI score0.00184EPSS
Exploits0References1
Prion
Prion
added 2023/01/13 2:15 a.m.17 views

Design/Logic Flaw

NVIDIA DGX Station contains a vulnerability in SBIOS in the SmiFlash, where a local user with elevated privileges can read, write and erase flash, which may lead to code execution, escalation of privileges, denial of service, and information disclosure. The scope of impact can extend to other...

4CVSS8.1AI score0.00184EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/01/13 2:15 a.m.24 views

Design/Logic Flaw

NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmiFlash, where a local user with elevated privileges can read, write and erase flash, which may lead to code execution, escalation of privileges, denial of service, and information disclosure. The scope of impact can extend to other...

4CVSS8.1AI score0.00184EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/01/13 2:15 a.m.15 views

Design/Logic Flaw

DGX A100 SBIOS contains a vulnerability in the Pre-EFI Initialization PEIphase, where a privileged user can disable SPI flash protection, which may lead to denial of service, escalation of privileges, or data tampering...

4.3CVSS7.8AI score0.00154EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/01/13 2:15 a.m.21 views

Information disclosure

NVIDIA DGX A100 contains a vulnerability in SBIOS in the FsRecovery, which may allow a highly privileged local attacker to cause an out-of-bounds write, which may lead to code execution, denial of service, compromised integrity, and information disclosure...

4CVSS6.7AI score0.00234EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/13 2:6 a.m.7 views

CVE-2022-42286

DGX A100 SBIOS contains a vulnerability in Bds, which may lead to code execution, denial of service, or escalation of privileges...

6CVSS7.3AI score0.00188EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/01/13 2:6 a.m.34 views

CVE-2022-42286

DGX A100 SBIOS contains a vulnerability in Bds, which may lead to code execution, denial of service, or escalation of privileges...

6CVSS8.6AI score0.00188EPSS
Exploits0References1
CVE
CVE
added 2023/01/13 2:6 a.m.67 views

CVE-2022-42286

CVE-2022-42286 is an NVIDIA DGX A100 SBIOS vulnerability in the Bds component that can lead to code execution, denial of service, or privilege escalation. The issue affects the DGX A100 SBIOS (Bds) and is addressed by firmware updates. NVIDIA’s bulletin lists SBIOS firmware version 1.18 as the fi...

7.8CVSS7.8AI score0.00188EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/01/13 1:48 a.m.7 views

CVE-2022-42285

DGX A100 SBIOS contains a vulnerability in the Pre-EFI Initialization PEIphase, where a privileged user can disable SPI flash protection, which may lead to denial of service, escalation of privileges, or data tampering...

6CVSS7.1AI score0.00154EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/01/13 1:48 a.m.30 views

CVE-2022-42285

DGX A100 SBIOS contains a vulnerability in the Pre-EFI Initialization PEIphase, where a privileged user can disable SPI flash protection, which may lead to denial of service, escalation of privileges, or data tampering...

6CVSS8.1AI score0.00154EPSS
Exploits0References1
CVE
CVE
added 2023/01/13 1:48 a.m.59 views

CVE-2022-42285

CVE-2022-42285 affects NVIDIA DGX A100 SBIOS in the Pre-EFI Initialization (PEI) phase, where a privileged local user can disable SPI flash protection, enabling denial of service, privilege escalation, or data tampering. NVIDIA’s security bulletin and firmware update table indicate mitigations: D...

7.8CVSS7.6AI score0.00154EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/01/13 1:37 a.m.32 views

CVE-2022-42281

NVIDIA DGX A100 contains a vulnerability in SBIOS in the FsRecovery, which may allow a highly privileged local attacker to cause an out-of-bounds write, which may lead to code execution, denial of service, compromised integrity, and information disclosure...

6.7CVSS7.1AI score0.00234EPSS
Exploits0References1
CVE
CVE
added 2023/01/13 1:37 a.m.62 views

CVE-2022-42281

The CVE-2022-42281 entry involves the NVIDIA DGX A100 SBIOS FsRecovery vulnerability. A highly privileged local attacker could trigger an out-of-bounds write in SBIOS FsRecovery, potentially enabling code execution, DoS, integrity compromise, or information disclosure. NVIDIA’s security bulletin ...

6.7CVSS6.3AI score0.00234EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/01/13 1:32 a.m.34 views

CVE-2022-42277

NVIDIA DGX Station contains a vulnerability in SBIOS in the SmiFlash, where a local user with elevated privileges can read, write and erase flash, which may lead to code execution, escalation of privileges, denial of service, and information disclosure. The scope of impact can extend to other...

7.5CVSS8.5AI score0.00184EPSS
Exploits0References1
CVE
CVE
added 2023/01/13 1:32 a.m.54 views

CVE-2022-42277

The CVE-2022-42277 entry affects NVIDIA DGX Station. A vulnerability in SBIOS (SmiFlash) permits a local, highly privileged user to read, write, and erase the flash, with potential for code execution, privilege escalation, denial of service, and information disclosure; impact could extend to othe...

8.2CVSS8AI score0.00184EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/01/13 1:32 a.m.60 views

CVE-2022-42276

The CVE-2022-42276 entry concerns NVIDIA DGX A100 SBIOS in the SmiFlash. A local, highly privileged user can read, write, and erase the SPI flash, potentially enabling code execution, privilege escalation, denial of service, or information disclosure with possible impact to other components. NVID...

8.2CVSS8AI score0.00184EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/01/13 1:32 a.m.31 views

CVE-2022-42276

NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmiFlash, where a local user with elevated privileges can read, write and erase flash, which may lead to code execution, escalation of privileges, denial of service, and information disclosure. The scope of impact can extend to other...

7.5CVSS8.5AI score0.00184EPSS
Exploits0References1
Rows per page
Query Builder