Vulnerability Details CVE-2023-25528
NVIDIA DGX H100 baseboard management controller (BMC) contains a vulnerability in a web server plugin, where an unauthenticated attacker may cause a stack overflow by sending a specially crafted network packet. A successful exploit of this vulnerability may lead to arbitrary code execution, denial of service, information disclosure, and data tampering.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 64.8%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2023-25528
-
cpe:2.3:h:nvidia:dgx_h100:-
-
cpe:2.3:o:nvidia:dgx_h100_firmware:*