CVE-2023-31035
CVSS 3.1 Score 7.8 of 10 (high)
Details
Published Jan 12, 2024
Updated: Jan 19, 2024
CWE ID 20
Summary
CVE-2023-31035 is a vulnerability affecting the NVIDIA DGX A100 System BIOS. This issue allows an attacker to trigger a Subsystem Microarchitecture Interface (SMI) callout vulnerability, potentially enabling code execution at the System Management Mode (SMM) level. A successful exploit could result in various consequences, including denial of service, privilege escalation, and information disclosure. This vulnerability poses a significant risk to system security and requires immediate attention for patching and mitigation.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- NVIDIA