CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-31035

NVIDIA DGX A100 SBIOS contains a vulnerability where an attacker may cause an SMI callout vulnerability that could be used to execute arbitrary code at the SMM level. A successful exploit of this vulnerability may lead to code execution, denial of service, escalation of privileges, and information disclosure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 8.3%

CVSS Severity

CVSS v3 Score 7.5

References

https://nvidia.custhelp.com/app/answers/detail/a_id/5510
https://nvidia.custhelp.com/app/answers/detail/a_id/5510

Products affected by CVE-2023-31035

Nvidia » Dgx A100 » Version: N/A

cpe:2.3:h:nvidia:dgx_a100:-
Nvidia » Dgx A100 Firmware » Version: N/A

cpe:2.3:o:nvidia:dgx_a100_firmware:-
Nvidia » Dgx A100 Firmware » Version: 1.18

cpe:2.3:o:nvidia:dgx_a100_firmware:1.18
Nvidia » Dgx A100 Firmware » Version: 1.8

cpe:2.3:o:nvidia:dgx_a100_firmware:1.8

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-31035

Products

Pricing

Contact Us