Vulnerability Details CVE-2023-0208
NVIDIA DCGM for Linux contains a vulnerability in HostEngine (server component) where a user may cause a heap-based buffer overflow through the bound socket. A successful exploit of this vulnerability may lead to denial of service and data tampering.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.1%
CVSS Severity
CVSS v3 Score 8.4
References
Products affected by CVE-2023-0208
-
cpe:2.3:a:nvidia:data_center_gpu_manager:1.2.3
-
cpe:2.3:a:nvidia:data_center_gpu_manager:1.3.3
-
cpe:2.3:a:nvidia:data_center_gpu_manager:1.4.2
-
cpe:2.3:a:nvidia:data_center_gpu_manager:1.4.6
-
cpe:2.3:a:nvidia:data_center_gpu_manager:1.5.6
-
cpe:2.3:a:nvidia:data_center_gpu_manager:1.6.3
-
cpe:2.3:a:nvidia:data_center_gpu_manager:1.7.1
-
cpe:2.3:a:nvidia:data_center_gpu_manager:1.7.2
-
cpe:2.3:a:nvidia:data_center_gpu_manager:2.0.10
-
cpe:2.3:a:nvidia:data_center_gpu_manager:2.0.13
-
cpe:2.3:a:nvidia:data_center_gpu_manager:2.0.15
-
cpe:2.3:a:nvidia:data_center_gpu_manager:2.1.4
-
cpe:2.3:a:nvidia:data_center_gpu_manager:2.3.4
-
cpe:2.3:a:nvidia:data_center_gpu_manager:2.4.7
-
cpe:2.3:a:nvidia:data_center_gpu_manager:3.0.4
-
cpe:2.3:a:nvidia:data_center_gpu_manager:3.1.3
-
cpe:2.3:a:nvidia:data_center_gpu_manager:3.1.6
-
cpe:2.3:o:linux:linux_kernel:-