CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-42277

NVIDIA DGX Station contains a vulnerability in SBIOS in the SmiFlash, where a local user with elevated privileges can read, write and erase flash, which may lead to code execution, escalation of privileges, denial of service, and information disclosure. The scope of impact can extend to other components.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 6.4%

CVSS Severity

CVSS v3 Score 7.5

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5435
https://nvidia.custhelp.com/app/answers/detail/a_id/5435

Products affected by CVE-2022-42277

Nvidia » Dgx Station A100 » Version: N/A

cpe:2.3:h:nvidia:dgx_station_a100:-
Nvidia » Dgx Station A100 Firmware » Version: Any

cpe:2.3:o:nvidia:dgx_station_a100_firmware:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-42277

Products

Pricing

Contact Us