CVE-2023-31031
Description
NVIDIA DGX A100 SBIOS contains a vulnerability where a user may cause a heap-based buffer overflow by local access. A successful exploit of this vulnerability may lead to code execution, denial of service, information disclosure, and data tampering.
- CVSS Version 3.1
nvd
CVE ID: CVE-2023-31031
Base Score: 7.8
Base Severity: HIGH
Vector String:CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 1.8
nvidia
CVE ID: CVE-2023-31031
Base Score: 4.2
Base Severity: MEDIUM
Vector String:CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L
Impact Score: 3.4
Exploitability Score: 0.8