nvidia

907 tracked vulnerabilities.

CVE-2023-25525 HIGH
NVIDIA Cumulus Linux < 5.6.0 - Information Disclosure via VxLAN-Encapsulated IPv6 Packet Forwarding
Sep 20, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-25519 HIGH
NVIDIA ConnectX Host Firmware - Privilege Escalation
Sep 12, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-25524 MEDIUM
NVIDIA Omniverse Launcher < 1.8.11 - Access Token Exposure in Browser Address Bar
Aug 03, 2023
CVSS 4.0
EPSS 0.00
CVE-2023-25523 LOW
NVIDIA CUDA Toolkit < 12.2 - Denial of Service via Malformed ELF File in nvdisasm
Jul 04, 2023
CVSS 3.3
EPSS 0.00
CVE-2023-25522 HIGH
NVIDIA DGX A100/A800 Firmware < 1.21 - DoS, Info Disclosure, Data Tampering via SBIOS
Jul 04, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-25521 HIGH
NVIDIA DGX A100/A800 Firmware < 1.21 - Privilege Escalation via SBIOS Input Parameter Validation
Jul 04, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-25517 HIGH
NVIDIA GPU Display Driver < 11.13 - Improper Authorization in vGPU Plugin
Jul 04, 2023
CVSS 7.1
EPSS 0.00
CVE-2023-25516 HIGH
NVIDIA GPU Display Driver < 11.12 - Integer Overflow Leading to Information Disclosure and Denial of Service
Jul 04, 2023
CVSS 7.1
EPSS 0.00
CVE-2023-25520 MEDIUM
NVIDIA Jetson Linux < 32.7.4 - Denial of Service via nvbootctrl Invalid Settings
Jun 23, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-25518 HIGH
NVIDIA Jetson Linux < 32.7.4 - Arbitrary Memory Read/Write via PCIe Controller
Jun 23, 2023
CVSS 7.1
EPSS 0.00
CVE-2023-25515 HIGH
NVIDIA GPU Display Driver 470-474.44, 470-470.199.02 - Untrusted Pointer Dereference
Jun 23, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-25514 MEDIUM
NVIDIA CUDA Toolkit < 12.1.1 - Out-of-bounds Read in cuobjdump
Apr 22, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-25513 MEDIUM
NVIDIA CUDA Toolkit < 12.0.1 - Out-of-bounds Read in cuobjdump via Malformed Input File
Apr 22, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-25512 MEDIUM
NVIDIA CUDA Toolkit < 12.1.0 - Out-of-bounds Read in cuobjdump
Apr 22, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-25511 LOW
NVIDIA CUDA Toolkit < 12.1.1 - Denial of Service via cuobjdump Division-by-Zero
Apr 22, 2023
CVSS 3.3
EPSS 0.00
CVE-2023-25510 LOW
NVIDIA CUDA Toolkit < 12.1.1 - Denial of Service via cuobjdump Malformed Binary Handling
Apr 22, 2023
CVSS 3.3
EPSS 0.00
CVE-2023-25509 MEDIUM
NVIDIA DGX-1 SBIOS < 52w_3a13 - Code Execution and Denial of Service in Bds
Apr 22, 2023
CVSS 6.0
EPSS 0.00
CVE-2023-25508 MEDIUM
NVIDIA DGX-1 BMC < 3.39.30 - Authenticated Path Traversal and Arbitrary File Upload/Download via IPMI Handler
Apr 22, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-25507 HIGH
NVIDIA DGX-1 BMC < 3.39.30 - Authenticated OS Command Injection via SPX REST API
Apr 22, 2023
CVSS 7.2
EPSS 0.01
CVE-2023-25506 HIGH
NVIDIA DGX-1 SBIOS < 52w_3a13 - Out-of-bounds Write in Ofbd
Apr 22, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-25505 HIGH
NVIDIA DGX-1 BMC < 3.39.30 - Authenticated Buffer Overflow in IPMI Handler
Apr 22, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-0209 HIGH
NVIDIA DGX-1 SBIOS < 52w_3a13 - Unauthenticated Arbitrary Code Execution via Uncore PEI Module
Apr 22, 2023
CVSS 8.2
EPSS 0.00
CVE-2023-0207 HIGH
NVIDIA DGX-2 - Privilege Escalation
Apr 22, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-0206 HIGH
NVIDIA DGX A100 SBI - Memory Corruption
Apr 22, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-0205 MEDIUM
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX < 35.1012 - Denial of Service via Insufficient Access Control
Apr 22, 2023
CVSS 5.0
EPSS 0.01