Security Advisory

CVE-2022-28200

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-02 00:20:10

Last updated 2024-08-03 05:48:37

Assigner nvidia

State PUBLISHED

Description

NVIDIA DGX A100 contains a vulnerability in SBIOS in the BiosCfgTool, where a local user with elevated privileges can read and write beyond intended bounds in SMRAM, which may lead to code execution, escalation of privileges, denial of service, and information disclosure. The scope of impact can extend to other components.

← Browse all CVEs View on cve.org ↗