CVE-2023-31031

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jan 12, 2024

Updated: Jan 19, 2024

CWE ID 122

CWE ID 787

Summary

CVE-2023-31031 is a newly identified vulnerability affecting the NVIDIA DGX A100 System BIOS. This issue allows local users to trigger a heap-based buffer overflow, potentially leading to serious consequences such as code execution, denial of service, information disclosure, and data tampering. Exploitation of this vulnerability can result in significant security risks and potential system compromise. NVIDIA has released a patch to address this issue, and users are strongly encouraged to apply it as soon as possible to mitigate potential threats.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

NVIDIA

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/uG2Ep8
https://www.cve.org/CVERecord?id=CVE-2023-31031
https://nvd.nist.gov/vuln/detail/CVE-2023-31031

Back to Vulnerability Database

CVE-2023-31031

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations