Overview
- Description
- NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit (DPU) contains a vulnerability where an attacker may cause an improper handling of insufficient privileges issue. A successful exploit of this vulnerability may lead to denial of service, data tampering, and limited information disclosure.
- Source
- psirt@nvidia.com
- NVD status
- Awaiting Analysis
Risk scores
CVSS 3.1
- Type
- Secondary
- Base score
- 8.7
- Impact score
- 6
- Exploitability score
- 2
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:H/A:H
- Severity
- HIGH
Weaknesses
- psirt@nvidia.com
- CWE-274
Social media
- Hype score
- Not currently trending
#Nvidia has issued a significant security update for its ConnectX and BlueField Data Processing Units (DPUs) following the discovery of two high-severity vulnerabilities (CVE-2024-0105 and CVE-2024-0106) https://t.co/cwQwrCkWyg
@the_yellow_fall
4 Nov 2024
57 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-0106 Privilege Escalation Vulnerability in NVIDIA ConnectX Host Firmware NVIDIA ConnectX Host Firmware for BlueField DPU has a security flaw. An attacker can misuse it to cause improper handling of privi... https://t.co/HaHnoIAMZp
@VulmonFeeds
1 Nov 2024
30 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-0106 NVIDIA ConnectX Host Firmware for the BlueField Data Processing Unit (DPU) contains a vulnerability where an attacker may cause an improper handling of insufficient pri… https://t.co/ArqPKBCYcU
@CVEnew
1 Nov 2024
491 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2024-0106: HIGH] Urgent: NVIDIA's ConnectX Host Firmware for BlueField DPU has a critical vulnerability allowing attackers to exploit and cause denial of service, data tampering, and info disclosure.#cybersecurity,#vulnerability https://t.co/cCMoMKZscv https://t.co/pmFlDg3oD
@CveFindCom
1 Nov 2024
7 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes