threat
engine
.sh
Back
·
··:··
Home
/
Product
/
nvidia dgx a100 firmware
Product
nvidia dgx a100 firmware
28 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2023-31035
< 1.25
NVIDIA DGX A100 SBIOS contains a vulnerability where an attacker may cause an SMI callout vulnerability that could be used to exec
7.5
HIGH
CVE-2023-31034
< 1.25
NVIDIA DGX A100 SBIOS contains a vulnerability where a local attacker can cause input validation checks to be bypassed by causing
6.6
MEDIUM
CVE-2023-31033
< 00.22.05
NVIDIA DGX A100 BMC contains a vulnerability where a user may cause a missing authentication issue for a critical function by an a
6.8
MEDIUM
CVE-2023-31032
< 1.25
NVIDIA DGX A100 SBIOS contains a vulnerability where a user may cause a dynamic variable evaluation by local access. A successful
7.5
HIGH
CVE-2023-31031
< 1.25
NVIDIA DGX Station A100 and DGX Station A800 SBIOS contains a vulnerability where a user may cause a heap-based buffer overflow by
4.2
MEDIUM
CVE-2023-31030
< 00.22.05
NVIDIA DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated attacker may cause a stack overflow
9.3
CRITICAL
CVE-2023-31029
< 00.22.05
NVIDIA DGX A100 baseboard management controller (BMC) contains a vulnerability in the host KVM daemon, where an unauthenticated at
9.3
CRITICAL
CVE-2023-31025
< 00.22.05
NVIDIA DGX A100 BMC contains a vulnerability where an attacker may cause an LDAP user injection. A successful exploit of this vuln
6.5
MEDIUM
CVE-2023-31024
< 00.22.05
NVIDIA DGX A100 BMC contains a vulnerability in the host KVM daemon, where an unauthenticated attacker may cause stack memory corr
9.0
CRITICAL
CVE-2023-25522
< 1.21
NVIDIA DGX A100/A800 contains a vulnerability in SBIOS where an attacker may cause improper input validation by providing configur
7.5
HIGH
CVE-2023-25521
< 1.21
NVIDIA DGX A100/A800 contains a vulnerability in SBIOS where an attacker may cause execution with unnecessary privileges by levera
7.5
HIGH
CVE-2023-0206
< 1.18
NVIDIA DGX A100 SBIOS contains a vulnerability where an attacker may modify arbitrary memory of SMRAM by exploiting the NVME SMM A
7.5
HIGH
CVE-2023-0202
< 1.18
NVIDIA DGX A100 SBIOS contains a vulnerability where an attacker may modify arbitrary memory of SMRAM by exploiting the GenericSio
7.5
HIGH
CVE-2022-42290
< 00.19.07
NVIDIA BMC contains a vulnerability in SPX REST API, where an authorized attacker can inject arbitrary shell commands, which may l
7.2
HIGH
CVE-2022-42289
< 00.19.07
NVIDIA BMC contains a vulnerability in SPX REST API, where an authorized attacker can inject arbitrary shell commands, which may l
7.2
HIGH
CVE-2022-42288
< 00.19.07
NVIDIA BMC contains a vulnerability in IPMI handler, where an unauthorized attacker can use certain oracles to guess a valid BMC u
5.3
MEDIUM
CVE-2022-42281
< 1.18
NVIDIA DGX A100 contains a vulnerability in SBIOS in the FsRecovery, which may allow a highly privileged local attacker to cause a
6.7
MEDIUM
CVE-2022-42279
< 00.19.07
NVIDIA BMC contains a vulnerability in SPX REST API, where an authorized attacker can inject arbitrary shell commands, which may l
7.2
HIGH
CVE-2022-42276
< 1.18
NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmiFlash, where a local user with elevated privileges can read, write and
7.5
HIGH
CVE-2022-42273
< 00.19.07
NVIDIA BMC contains a vulnerability in libwebsocket, where an authorized attacker can cause a buffer overflow and cause a denial o
8.1
HIGH
CVE-2022-42272
< 00.19.07
NVIDIA BMC contains a vulnerability in IPMI handler, where an authorized attacker can cause a buffer overflow, which may lead to c
8.1
HIGH
CVE-2022-42271
< 00.19.07
NVIDIA BMC contains a vulnerability in IPMI handler, where an authorized attacker can cause a buffer overflow and cause a denial o
8.4
HIGH
CVE-2022-31603
< 22.5.5
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with high privileges and preconditioned IpSecDxe g
6.4
MEDIUM
CVE-2022-31602
< 22.5.5
NVIDIA DGX A100 contains a vulnerability in SBIOS in the IpSecDxe, where a user with elevated privileges and a preconditioned heap
6.4
MEDIUM
CVE-2022-31601
< 22.5.5
NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmbiosPei, which may allow a highly privileged local attacker to cause an
6.7
MEDIUM
CVE-2022-31600
< 22.5.5
NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmmCore, where a user with high privileges can chain another vulnerabilit
7.5
HIGH
CVE-2022-31599
< 22.5.5
NVIDIA DGX A100 contains a vulnerability in SBIOS in the Ofbd, where a local user with elevated privileges can cause access to an
8.2
HIGH
CVE-2022-28200
< 22.5.5
NVIDIA DGX A100 contains a vulnerability in SBIOS in the BiosCfgTool, where a local user with elevated privileges can read and wri
8.2
HIGH
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin