CVE-2023-0204
Published Apr 22, 2023
Last updated 2 years ago
Overview
- Description
- NVIDIA ConnectX-5, ConnectX-6, and ConnectX6-DX contain a vulnerability in the NIC firmware, where an unprivileged user can cause improper handling of exceptional conditions, which may lead to denial of service.
- Source
- psirt@nvidia.com
- NVD status
- Analyzed
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.7
- Impact score
- 4
- Exploitability score
- 3.1
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
- Severity
- HIGH
Social media
- Hype score
- Not currently trending
Configurations
[ { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:o:nvidia:connectx_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "22D68BAB-D2DD-4997-9881-15F3243A9D7B", "versionEndExcluding": "35.1012" } ], "operator": "OR" }, { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:h:nvidia:connectx-5:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "85FBF3A9-B6C3-4705-A2E1-2503E7A6725D" }, { "criteria": "cpe:2.3:h:nvidia:connectx-6:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8421C891-26D3-4845-A20A-80E4769D4E25" }, { "criteria": "cpe:2.3:h:nvidia:connectx-6-dx:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6BAADC39-548E-44E4-AD25-74A7CEBCC2EB" } ], "operator": "OR" } ], "operator": "AND" } ]