Vulnerability Details CVE-2023-25519
NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit contains a vulnerability where a restricted host may cause an incorrect user management error. A successful exploit of this vulnerability may lead to escalation of privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.3%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2023-25519
-
cpe:2.3:h:nvidia:bluefield_1:-
-
cpe:2.3:h:nvidia:bluefield_2_ga:-
-
cpe:2.3:h:nvidia:bluefield_2_lts:-
-
cpe:2.3:h:nvidia:bluefield_3_ga:-
-
cpe:2.3:o:nvidia:bluefield_1_firmware:18.24.1000
-
cpe:2.3:o:nvidia:bluefield_2_ga_firmware:-
-
cpe:2.3:o:nvidia:bluefield_2_lts_firmware:-
-
cpe:2.3:o:nvidia:bluefield_3_ga_firmware:-