PT-2025-48051

NVIDIA DGX Spark GB10 contains a vulnerability in SROOT firmware where an attacker could cause an out-of-bound write. A successful exploit of this vulnerability might lead to code execution, data tampering, denial of service, or escalation of privileges...

CVE-2025-23337

NVIDIA HGX & DGX GB200, GB300, B300 contain a vulnerability in the HGX Management Controller HMC that may allow a malicious actor with administrative access on the BMC to access the HMC as an administrator. A successful exploit of this vulnerability may lead to code execution, denial of service,...

NVIDIA DGX Buffer Error Vulnerability

NVIDIA DGX is a high-performance workstation for deep learning applications from NVIDIA. A buffer error vulnerability exists in NVIDIA DGX A100 Servers, which originates from a heap-based buffer overflow that could be caused by a user via local access...

PT-2023-20139 · Nvidia · Nvidia Dgx H100 Bmc

Name of the Vulnerable Software and Affected Versions: NVIDIA DGX H100 BMC affected versions not specified NVIDIA DGX A100 BMC affected versions not specified Description: The vulnerability is located in the host KVM daemon of the NVIDIA DGX H100 BMC and DGX A100 BMC, where an unauthenticated...