CVE-2022-42287

Description

NVIDIA BMC contains a vulnerability in IPMI handler, where an authorized attacker can upload and download arbitrary files under certain circumstances, which may lead to denial of service, escalation of privileges, information disclosure and data tampering.

CVSS Version 3.1

nvd
CVE ID: CVE-2022-42287
Base Score: 7.8
Base Severity: HIGH
Vector String:CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 1.8

nvidia
CVE ID: CVE-2022-42287
Base Score: 6.0
Base Severity: MEDIUM
Vector String:CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
Impact Score: 5.2
Exploitability Score: 0.8

Refrence: NVD MITRE

Description​

Description