Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
vulnrichmentNvidiaVULNRICHMENT:CVE-2023-31015
HistorySep 20, 2023 - 1:12 a.m.

CVE-2023-31015

2023-09-2001:12:02
CWE-287
nvidia
github.com
nvidia dgx h100
bmc
rest service
vulnerability
authentication issue
privileges escalation
information disclosure
code execution
denial of service

CVSS3

6.6

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

AI Score

7.4

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON

NVIDIA DGX H100 BMC contains a vulnerability in the REST service where a host user may cause as improper authentication issue. A successful exploit of this vulnerability may lead to escalation of privileges, information disclosure, code execution, and denial of service.

Related

prion 1
cvelist 1
nvd 1
cve 1
nvidia 1
prion
prion
Authentication flaw
2023-09-20 02:15:00
cvelist
cvelist
CVE-2023-31015
2023-09-20 01:12:02
nvd
nvd
CVE-2023-31015
2023-09-20 02:15:21
cve
cve
CVE-2023-31015
2023-09-20 02:15:21
nvidia
nvidia
Security Bulletin: NVIDIA DGX H100 - August 2023
2023-08-28 00:00:00

CVSS3

6.6

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:L

AI Score

7.4

Confidence

High

SSVC

Exploitation

none

Automatable

no

Technical Impact

partial

JSON
Related for VULNRICHMENT:CVE-2023-31015
prion1cvelist1nvd1cve1nvidia1