13 matches found
CVE-2022-31603
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with high privileges and preconditioned IpSecDxe global data can exploit improper validation of an array index to cause code execution, which may lead to denial of service, data integrity impact, and information...
EUVD-2021-14903
Malware in sbrugna...
CVE-2022-31602
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with elevated privileges and a preconditioned heap can exploit an out-of-bounds write vulnerability, which may lead to code execution, denial of service, data integrity impact, and information disclosure...
CVE-2022-31603
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with high privileges and preconditioned IpSecDxe global data can exploit improper validation of an array index to cause code execution, which may lead to denial of service, data integrity impact, and information...
Input validation
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with high privileges and preconditioned IpSecDxe global data can exploit improper validation of an array index to cause code execution, which may lead to denial of service, data integrity impact, and information...
Heap overflow
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with elevated privileges and a preconditioned heap can exploit an out-of-bounds write vulnerability, which may lead to code execution, denial of service, data integrity impact, and information disclosure...
CVE-2022-31603
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with high privileges and preconditioned IpSecDxe global data can exploit improper validation of an array index to cause code execution, which may lead to denial of service, data integrity impact, and information...
CVE-2022-31603
The CVE-2022-31603 entry affects NVIDIA DGX A100 firmware (SBIOS, IpSecDxe). The root cause is improper validation of an array index in IpSecDxe, leading to potential code execution, with possible denial of service, data integrity impact, and information disclosure. Publicly documented impact is ...
CVE-2022-31602
The CVE-2022-31602 issue affects NVIDIA DGX A100 firmware SBIOS (IpSecDxe). A local attacker with elevated privileges and a preconditioned heap can trigger an out-of-bounds write in IpSecDxe, leading to code execution, denial of service, data integrity impact, and information disclosure. Affected...
CVE-2022-31602
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with elevated privileges and a preconditioned heap can exploit an out-of-bounds write vulnerability, which may lead to code execution, denial of service, data integrity impact, and information disclosure...
NVIDIA DGX 缓冲区错误漏洞
NVIDIA DGX is a high-performance workstation for deep learning applications from NVIDIA. The NVIDIA DGX A100 suffers from a buffer error vulnerability that originates from a boundary error when processing SBIOS untrusted input in IpSecDxe. An attacker could exploit the vulnerability to trigger...
DEBIAN-CVE-2021-28213
Example EDK2 encrypted private key in the IpSecDxe.efi present potential security risks...
UBUNTU-CVE-2021-28213
Example EDK2 encrypted private key in the IpSecDxe.efi present potential security risks...