Vulnerability Description
NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause insufficient protection of credentials. A successful exploit of this vulnerability may lead to information disclosure.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nvidia | Dgx H100 Firmware | < 23.08.18 |
| Nvidia | Dgx H100 | - |
Related Weaknesses (CWE)
References
- https://nvidia.custhelp.com/app/answers/detail/a_id/5473Vendor Advisory
- https://nvidia.custhelp.com/app/answers/detail/a_id/5473Vendor Advisory
FAQ
What is CVE-2023-25532?
CVE-2023-25532 is a vulnerability with a CVSS score of 6.5 (MEDIUM). NVIDIA DGX H100 BMC contains a vulnerability in IPMI, where an attacker may cause insufficient protection of credentials. A successful exploit of this vulnerability may lead to information disclosure.
How severe is CVE-2023-25532?
CVE-2023-25532 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-25532?
Check the references section above for vendor advisories and patch information. Affected products include: Nvidia Dgx H100 Firmware, Nvidia Dgx H100.