CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-31601

NVIDIA DGX A100 contains a vulnerability in SBIOS in the SmbiosPei, which may allow a highly privileged local attacker to cause an out-of-bounds write, which may lead to code execution, denial of service, compromised integrity, and information disclosure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.6%

CVSS Severity

CVSS v3 Score 6.7

CVSS v2 Score 4.6

References

Products affected by CVE-2022-31601

Nvidia » Dgx A100 » Version: N/A

cpe:2.3:h:nvidia:dgx_a100:-
Nvidia » Dgx A100 Firmware » Version: N/A

cpe:2.3:o:nvidia:dgx_a100_firmware:-
Nvidia » Dgx A100 Firmware » Version: 00.19.07

cpe:2.3:o:nvidia:dgx_a100_firmware:00.19.07
Nvidia » Dgx A100 Firmware » Version: 00.22.05

cpe:2.3:o:nvidia:dgx_a100_firmware:00.22.05
Nvidia » Dgx A100 Firmware » Version: 1.18

cpe:2.3:o:nvidia:dgx_a100_firmware:1.18
Nvidia » Dgx A100 Firmware » Version: 1.25

cpe:2.3:o:nvidia:dgx_a100_firmware:1.25
Nvidia » Dgx A100 Firmware » Version: 1.8

cpe:2.3:o:nvidia:dgx_a100_firmware:1.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-31601

Products

Pricing

Contact Us