nvidia
907 tracked vulnerabilities.
CVE-2023-25525
HIGH
NVIDIA Cumulus Linux < 5.6.0 - Information Disclosure via VxLAN-Encapsulated IPv6 Packet Forwarding
Sep 20, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-25519
HIGH
NVIDIA ConnectX Host Firmware - Privilege Escalation
Sep 12, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-25524
MEDIUM
NVIDIA Omniverse Launcher < 1.8.11 - Access Token Exposure in Browser Address Bar
Aug 03, 2023
CVSS 4.0
EPSS 0.00
CVE-2023-25523
LOW
NVIDIA CUDA Toolkit < 12.2 - Denial of Service via Malformed ELF File in nvdisasm
Jul 04, 2023
CVSS 3.3
EPSS 0.00
CVE-2023-25522
HIGH
NVIDIA DGX A100/A800 Firmware < 1.21 - DoS, Info Disclosure, Data Tampering via SBIOS
Jul 04, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-25521
HIGH
NVIDIA DGX A100/A800 Firmware < 1.21 - Privilege Escalation via SBIOS Input Parameter Validation
Jul 04, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-25517
HIGH
NVIDIA GPU Display Driver < 11.13 - Improper Authorization in vGPU Plugin
Jul 04, 2023
CVSS 7.1
EPSS 0.00
CVE-2023-25516
HIGH
NVIDIA GPU Display Driver < 11.12 - Integer Overflow Leading to Information Disclosure and Denial of Service
Jul 04, 2023
CVSS 7.1
EPSS 0.00
CVE-2023-25520
MEDIUM
NVIDIA Jetson Linux < 32.7.4 - Denial of Service via nvbootctrl Invalid Settings
Jun 23, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-25518
HIGH
NVIDIA Jetson Linux < 32.7.4 - Arbitrary Memory Read/Write via PCIe Controller
Jun 23, 2023
CVSS 7.1
EPSS 0.00
CVE-2023-25515
HIGH
NVIDIA GPU Display Driver 470-474.44, 470-470.199.02 - Untrusted Pointer Dereference
Jun 23, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-25514
MEDIUM
NVIDIA CUDA Toolkit < 12.1.1 - Out-of-bounds Read in cuobjdump
Apr 22, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-25513
MEDIUM
NVIDIA CUDA Toolkit < 12.0.1 - Out-of-bounds Read in cuobjdump via Malformed Input File
Apr 22, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-25512
MEDIUM
NVIDIA CUDA Toolkit < 12.1.0 - Out-of-bounds Read in cuobjdump
Apr 22, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-25511
LOW
NVIDIA CUDA Toolkit < 12.1.1 - Denial of Service via cuobjdump Division-by-Zero
Apr 22, 2023
CVSS 3.3
EPSS 0.00
CVE-2023-25510
LOW
NVIDIA CUDA Toolkit < 12.1.1 - Denial of Service via cuobjdump Malformed Binary Handling
Apr 22, 2023
CVSS 3.3
EPSS 0.00
CVE-2023-25509
MEDIUM
NVIDIA DGX-1 SBIOS < 52w_3a13 - Code Execution and Denial of Service in Bds
Apr 22, 2023
CVSS 6.0
EPSS 0.00
CVE-2023-25508
MEDIUM
NVIDIA DGX-1 BMC < 3.39.30 - Authenticated Path Traversal and Arbitrary File Upload/Download via IPMI Handler
Apr 22, 2023
CVSS 6.7
EPSS 0.00
CVE-2023-25507
HIGH
NVIDIA DGX-1 BMC < 3.39.30 - Authenticated OS Command Injection via SPX REST API
Apr 22, 2023
CVSS 7.2
EPSS 0.01
CVE-2023-25506
HIGH
NVIDIA DGX-1 SBIOS < 52w_3a13 - Out-of-bounds Write in Ofbd
Apr 22, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-25505
HIGH
NVIDIA DGX-1 BMC < 3.39.30 - Authenticated Buffer Overflow in IPMI Handler
Apr 22, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-0209
HIGH
NVIDIA DGX-1 SBIOS < 52w_3a13 - Unauthenticated Arbitrary Code Execution via Uncore PEI Module
Apr 22, 2023
CVSS 8.2
EPSS 0.00
CVE-2023-0207
HIGH
NVIDIA DGX-2 - Privilege Escalation
Apr 22, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-0206
HIGH
NVIDIA DGX A100 SBI - Memory Corruption
Apr 22, 2023
CVSS 7.5
EPSS 0.00
CVE-2023-0205
MEDIUM
NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX < 35.1012 - Denial of Service via Insufficient Access Control
Apr 22, 2023
CVSS 5.0
EPSS 0.01
Products
gpu_driver 127
virtual_gpu 98
gpu_display_driver 81
triton_inference_server 51
jetson_linux 49
cuda_toolkit 46
virtual_gpu_manager 39
cloud_gaming 37
geforce_experience 37
nemo 33
dgx_a100_firmware 28
GeForce 20
NVIDIA RTX, Quadro, NVS 20
Tesla 20
Triton Inference Server 18
shield_experience 17
dgx_h100_firmware 15
dgx_os 15
Guest driver 14
bmc 13
megatron-lm 13
nemo_megatron_bridge 13
GPU Display Drivers 12
RTX, Quadro, NVS 12
Virtual GPU Manager 12
Megatron-Bridge 11
jetson_tx1 11
jetson_tx2 11
cloud_gaming_guest 10
geforce_gtx_950 8
Quick Filters